Action not permitted
Modal body text goes here.
cve-2024-4540
Vulnerability from cvelistv5
Published
2024-06-03 15:33
Modified
2024-09-18 08:37
Severity
Summary
Keycloak: exposure of sensitive information in pushed authorization requests (par) kc_restart cookie
References
Impacted products
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-4540",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-06-03T16:13:25.347543Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-04T17:53:04.999Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T20:40:47.507Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2024:3566",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3566"
},
{
"name": "RHSA-2024:3567",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3567"
},
{
"name": "RHSA-2024:3568",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3568"
},
{
"name": "RHSA-2024:3570",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3570"
},
{
"name": "RHSA-2024:3572",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3572"
},
{
"name": "RHSA-2024:3573",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3573"
},
{
"name": "RHSA-2024:3574",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3574"
},
{
"name": "RHSA-2024:3575",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3575"
},
{
"name": "RHSA-2024:3576",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3576"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"name": "RHBZ#2279303",
"tags": [
"issue-tracking",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:build_keycloak:22"
],
"defaultStatus": "unaffected",
"packageName": "keycloak-core",
"product": "Red Hat Build of Keycloak",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:build_keycloak:22"
],
"defaultStatus": "unaffected",
"packageName": "keycloak-core",
"product": "Red Hat Build of Keycloak",
"vendor": "Red Hat"
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:build_keycloak:22::el9"
],
"defaultStatus": "affected",
"packageName": "rhbk/keycloak-operator-bundle",
"product": "Red Hat build of Keycloak 22",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "22.0.11-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:build_keycloak:22::el9"
],
"defaultStatus": "affected",
"packageName": "rhbk/keycloak-rhel9",
"product": "Red Hat build of Keycloak 22",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "22-15",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:build_keycloak:22::el9"
],
"defaultStatus": "affected",
"packageName": "rhbk/keycloak-rhel9-operator",
"product": "Red Hat build of Keycloak 22",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "22-18",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:build_keycloak:24::el9"
],
"defaultStatus": "affected",
"packageName": "rhbk/keycloak-operator-bundle",
"product": "Red Hat build of Keycloak 24",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "24.0.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:build_keycloak:24::el9"
],
"defaultStatus": "affected",
"packageName": "rhbk/keycloak-rhel9",
"product": "Red Hat build of Keycloak 24",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "24-10",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:build_keycloak:24::el9"
],
"defaultStatus": "affected",
"packageName": "rhbk/keycloak-rhel9-operator",
"product": "Red Hat build of Keycloak 24",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "24-10",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:red_hat_single_sign_on:7.6"
],
"defaultStatus": "unaffected",
"packageName": "keycloak-core",
"product": "Red Hat Single Sign-On 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:red_hat_single_sign_on:7.6::el7"
],
"defaultStatus": "affected",
"packageName": "rh-sso7-keycloak",
"product": "Red Hat Single Sign-On 7.6 for RHEL 7",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:18.0.14-1.redhat_00001.1.el7sso",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:red_hat_single_sign_on:7.6::el8"
],
"defaultStatus": "affected",
"packageName": "rh-sso7-keycloak",
"product": "Red Hat Single Sign-On 7.6 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:18.0.14-1.redhat_00001.1.el8sso",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:red_hat_single_sign_on:7.6::el9"
],
"defaultStatus": "affected",
"packageName": "rh-sso7-keycloak",
"product": "Red Hat Single Sign-On 7.6 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:18.0.14-1.redhat_00001.1.el9sso",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:rhosemc:1.0::el8"
],
"defaultStatus": "affected",
"packageName": "rh-sso-7/sso76-openshift-rhel8",
"product": "RHEL-8 based Middleware Containers",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "7.6-49",
"versionType": "rpm"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Red Hat would like to thank Manuel Schallar for reporting this issue."
}
],
"datePublic": "2024-06-03T00:00:00+00:00",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Low"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-200",
"description": "Exposure of Sensitive Information to an Unauthorized Actor",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-09-18T08:37:31.443Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2024:3566",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3566"
},
{
"name": "RHSA-2024:3567",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3567"
},
{
"name": "RHSA-2024:3568",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3568"
},
{
"name": "RHSA-2024:3570",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3570"
},
{
"name": "RHSA-2024:3572",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3572"
},
{
"name": "RHSA-2024:3573",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3573"
},
{
"name": "RHSA-2024:3574",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3574"
},
{
"name": "RHSA-2024:3575",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3575"
},
{
"name": "RHSA-2024:3576",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3576"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"name": "RHBZ#2279303",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-05-06T00:00:00+00:00",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2024-06-03T00:00:00+00:00",
"value": "Made public."
}
],
"title": "Keycloak: exposure of sensitive information in pushed authorization requests (par) kc_restart cookie",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_redhatCweChain": "CWE-315-\u003eCWE-200: Cleartext Storage of Sensitive Information in a Cookie leads to Exposure of Sensitive Information to an Unauthorized Actor"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2024-4540",
"datePublished": "2024-06-03T15:33:18.191Z",
"dateReserved": "2024-05-06T11:02:39.841Z",
"dateUpdated": "2024-09-18T08:37:31.443Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-4540\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-06-03T16:15:08.993\",\"lastModified\":\"2024-06-03T23:15:08.930\",\"vulnStatus\":\"Awaiting Analysis\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla en Keycloak en las solicitudes de autorizaci\u00f3n push (PAR) de OAuth 2.0. Se descubri\u00f3 que los par\u00e1metros proporcionados por el cliente estaban incluidos en texto plano en la cookie KC_RESTART devuelta por la respuesta HTTP del servidor de autorizaci\u00f3n a una solicitud de autorizaci\u00f3n `request_uri`, lo que posiblemente conduzca a una vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3566\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3567\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3568\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3570\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3572\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3573\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3574\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3575\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3576\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-4540\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2279303\",\"source\":\"secalert@redhat.com\"}]}}"
}
}
rhsa-2024_3570
Vulnerability from csaf_redhat
Published
2024-06-03 19:50
Modified
2024-09-18 08:48
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 for OpenShift image enhancement update
Notes
Topic
A new image is available for Red Hat Single Sign-On 7.6.9, running on OpenShift Container Platform 3.10 and 3.11, and 4.3.
Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Single Sign-On is an integrated sign-on solution, available as a
Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat
Single Sign-On for OpenShift image provides an authentication server that
you can use to log in centrally, log out, and register. You can also manage
user accounts for web applications, mobile applications, and RESTful web
services.
This erratum releases a new image for Red Hat Single Sign-On 7.6.9 for
use within the OpenShift Container Platform 3.10, OpenShift Container Platform
3.11, and within the OpenShift Container Platform 4.3 cloud computing Platform-as-a-Service (PaaS) for
on-premise or private cloud deployments, aligning with the standalone product release.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new image is available for Red Hat Single Sign-On 7.6.9, running on OpenShift Container Platform 3.10 and 3.11, and 4.3.\n\nRed Hat Product Security has rated this update as having a security impact of Low and package name \u0027rh-sso7-keycloak\u0027. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Single Sign-On is an integrated sign-on solution, available as a\nRed Hat JBoss Middleware for OpenShift containerized image. The Red Hat\nSingle Sign-On for OpenShift image provides an authentication server that\nyou can use to log in centrally, log out, and register. You can also manage\nuser accounts for web applications, mobile applications, and RESTful web\nservices.\n\nThis erratum releases a new image for Red Hat Single Sign-On 7.6.9 for\nuse within the OpenShift Container Platform 3.10, OpenShift Container Platform\n3.11, and within the OpenShift Container Platform 4.3 cloud computing Platform-as-a-Service (PaaS) for\non-premise or private cloud deployments, aligning with the standalone product release.\n\nSecurity Fix(es):\n\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3570",
"url": "https://access.redhat.com/errata/RHSA-2024:3570"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3570.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 for OpenShift image enhancement update",
"tracking": {
"current_release_date": "2024-09-18T08:48:18+00:00",
"generator": {
"date": "2024-09-18T08:48:18+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3570",
"initial_release_date": "2024-06-03T19:50:22+00:00",
"revision_history": [
{
"date": "2024-06-03T19:50:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T19:50:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:48:18+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Middleware Containers for OpenShift",
"product": {
"name": "Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhosemc:1.0::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"product": {
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"product_id": "rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10?arch=s390x\u0026repository_url=registry.redhat.io/rh-sso-7/sso76-openshift-rhel8\u0026tag=7.6-49"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"product": {
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"product_id": "rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c?arch=ppc64le\u0026repository_url=registry.redhat.io/rh-sso-7/sso76-openshift-rhel8\u0026tag=7.6-49"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64",
"product": {
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64",
"product_id": "rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4?arch=amd64\u0026repository_url=registry.redhat.io/rh-sso-7/sso76-openshift-rhel8\u0026tag=7.6-49"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le"
},
"product_reference": "rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x"
},
"product_reference": "rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64"
},
"product_reference": "rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "To update to the latest Red Hat Single Sign-On 7.6.9 for OpenShift\nimage, Follow these steps to pull in the content:\n\n1. On your main hosts, ensure you are logged into the CLI as a\ncluster administrator or user with project administrator access\nto the global \"openshift\" project. For example:\n\n$ oc login -u system:admin\n\n2. Update the core set of Red Hat Single Sign-On resources for OpenShift\nin the \"openshift\" project by running the following commands:\n\n$ for resource in sso76-image-stream.json \\\nsso76-https.json \\\nsso76-mysql.json \\\nsso76-mysql-persistent.json \\\nsso76-postgresql.json \\\nsso76-postgresql-persistent.json \\\nsso76-x509-https.json \\\nsso76-x509-mysql-persistent.json \\\nsso76-x509-postgresql-persistent.json\ndo\noc replace -n openshift --force -f \\\nhttps://raw.githubusercontent.com/jboss-container-images/redhat-sso-7-openshift-image/v7.6.9.GA/templates/${resource}\ndone\n\n3. Install the Red Hat Single Sign-On 7.6.9 for OpenShift streams in the\n\"openshift\" project by running the following commands:\n\n$ oc -n openshift import-image redhat-sso76-openshift:1.0",
"product_ids": [
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3570"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:0b4292deba12b39ec2d115323252561da25aff7d2eedfb74b4dc26404eedbb5c_ppc64le",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:509a5c067105e608481b6dbd1d4f25e27dc446420b7830b06bf82981d851ac10_s390x",
"8Base-RHOSE-Middleware:rh-sso-7/sso76-openshift-rhel8@sha256:f57c4d020d9186224404fa3ff40dbd09ed4c70de4c94bd281ceabc6e99dbd9d4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3568
Vulnerability from csaf_redhat
Published
2024-06-03 19:48
Modified
2024-09-18 08:48
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 9
Notes
Topic
New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat Single Sign-On 7.6.9 on RHEL 9 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Low and package name \u0027rh-sso7-keycloak\u0027. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis release of Red Hat Single Sign-On 7.6.9 on RHEL 9 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3568",
"url": "https://access.redhat.com/errata/RHSA-2024:3568"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3568.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 9",
"tracking": {
"current_release_date": "2024-09-18T08:48:02+00:00",
"generator": {
"date": "2024-09-18T08:48:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3568",
"initial_release_date": "2024-06-03T19:48:46+00:00",
"revision_history": [
{
"date": "2024-06-03T19:48:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T19:48:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:48:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Single Sign-On 7.6 for RHEL 9",
"product": {
"name": "Red Hat Single Sign-On 7.6 for RHEL 9",
"product_id": "9Base-RHSSO-7.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:red_hat_single_sign_on:7.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Single Sign-On"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"product": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"product_id": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak@18.0.14-1.redhat_00001.1.el9sso?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"product": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"product_id": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak@18.0.14-1.redhat_00001.1.el9sso?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"product": {
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"product_id": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak-server@18.0.14-1.redhat_00001.1.el9sso?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch as a component of Red Hat Single Sign-On 7.6 for RHEL 9",
"product_id": "9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch"
},
"product_reference": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"relates_to_product_reference": "9Base-RHSSO-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src as a component of Red Hat Single Sign-On 7.6 for RHEL 9",
"product_id": "9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src"
},
"product_reference": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"relates_to_product_reference": "9Base-RHSSO-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch as a component of Red Hat Single Sign-On 7.6 for RHEL 9",
"product_id": "9Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch"
},
"product_reference": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"relates_to_product_reference": "9Base-RHSSO-7.6"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"9Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"9Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3568"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"9Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.noarch",
"9Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el9sso.src",
"9Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el9sso.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3576
Vulnerability from csaf_redhat
Published
2024-06-03 21:28
Modified
2024-09-18 08:47
Summary
Red Hat Security Advisory: Red Hat build of Keycloak 24.0.5 Images enhancement and security update
Notes
Topic
New images are available for Red Hat build of Keycloak 24.0.5 and Red Hat build of Keycloak 24.0.5 Operator, running on OpenShift Container Platform
Red Hat Product Security has rated this update as having a security impact of
Low. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat build of Keycloak is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat build of Keycloak for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You can also manage user accounts for web applications, mobile applications, and RESTful web services.
Red Hat build of Keycloak Operator for OpenShift simplifies deployment and management of Keycloak 24.0.5 clusters.
This erratum releases new images for Red Hat build of Keycloak 24.0.5 for use within the OpenShift Container Platform cloud computing Platform-as-a-Service (PaaS) for on-premise or private cloud deployments, aligning with the standalone product release.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "New images are available for Red Hat build of Keycloak 24.0.5 and Red Hat build of Keycloak 24.0.5 Operator, running on OpenShift Container Platform\n\nRed Hat Product Security has rated this update as having a security impact of\nLow. A Common Vulnerability Scoring System (CVSS) base score, which gives\na detailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat build of Keycloak is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat build of Keycloak for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You can also manage user accounts for web applications, mobile applications, and RESTful web services.\nRed Hat build of Keycloak Operator for OpenShift simplifies deployment and management of Keycloak 24.0.5 clusters.\nThis erratum releases new images for Red Hat build of Keycloak 24.0.5 for use within the OpenShift Container Platform cloud computing Platform-as-a-Service (PaaS) for on-premise or private cloud deployments, aligning with the standalone product release.\n\nSecurity Fix(es):\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s)\nlisted in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3576",
"url": "https://access.redhat.com/errata/RHSA-2024:3576"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3576.json"
}
],
"title": "Red Hat Security Advisory: Red Hat build of Keycloak 24.0.5 Images enhancement and security update",
"tracking": {
"current_release_date": "2024-09-18T08:47:28+00:00",
"generator": {
"date": "2024-09-18T08:47:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3576",
"initial_release_date": "2024-06-03T21:28:42+00:00",
"revision_history": [
{
"date": "2024-06-03T21:28:42+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T21:28:42+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:47:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat build of Keycloak 24",
"product": {
"name": "Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:build_keycloak:24::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat build of Keycloak"
},
{
"branches": [
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64",
"product": {
"name": "rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64",
"product_id": "rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9?arch=amd64\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9\u0026tag=24-10"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"product": {
"name": "rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"product_id": "rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03?arch=amd64\u0026repository_url=registry.redhat.io/rhbk/keycloak-operator-bundle\u0026tag=24.0.5-2"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"product": {
"name": "rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"product_id": "rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a?arch=amd64\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9-operator\u0026tag=24-10"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"product": {
"name": "rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"product_id": "rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45?arch=s390x\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9\u0026tag=24-10"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"product": {
"name": "rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"product_id": "rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c?arch=s390x\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9-operator\u0026tag=24-10"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"product": {
"name": "rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"product_id": "rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271?arch=ppc64le\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9\u0026tag=24-10"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"product": {
"name": "rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"product_id": "rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9-operator\u0026tag=24-10"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64 as a component of Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24:rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64"
},
"product_reference": "rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"relates_to_product_reference": "9Base-RHBK-24"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le as a component of Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le"
},
"product_reference": "rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"relates_to_product_reference": "9Base-RHBK-24"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64 as a component of Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64"
},
"product_reference": "rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"relates_to_product_reference": "9Base-RHBK-24"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x as a component of Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x"
},
"product_reference": "rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"relates_to_product_reference": "9Base-RHBK-24"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x as a component of Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x"
},
"product_reference": "rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"relates_to_product_reference": "9Base-RHBK-24"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le as a component of Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le"
},
"product_reference": "rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"relates_to_product_reference": "9Base-RHBK-24"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64 as a component of Red Hat build of Keycloak 24",
"product_id": "9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64"
},
"product_reference": "rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64",
"relates_to_product_reference": "9Base-RHBK-24"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHBK-24:rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.",
"product_ids": [
"9Base-RHBK-24:rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3576"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHBK-24:rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHBK-24:rhbk/keycloak-operator-bundle@sha256:106f2b57139af7135a83d41a1a0c8cf82d7f35ecb539e7d578759ac180ae1f03_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:57d9fabf4ef5677450af0e834b5d96694803a055514e262f4173118d7bc186f5_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:85207f0d7f58bdf0e5b12b5b1a6332ef733d6febd9c9c9d3a357d10265ffcc0a_amd64",
"9Base-RHBK-24:rhbk/keycloak-rhel9-operator@sha256:852808bb948ab47f547d3863f96d165fc38393c6011f5968d66bf14500533a5c_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:22f396e6089ca6dde477768d6db93601400bca856ef8e40172386a28d27a6d45_s390x",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:27d19c61a24ea38dfb537f89f9b459a1be957554985b489b5387c9d61fb3b271_ppc64le",
"9Base-RHBK-24:rhbk/keycloak-rhel9@sha256:cecd857e6417f83d07682b27b6e2c59af661e52ff7d56ee01c84792982472ba9_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3566
Vulnerability from csaf_redhat
Published
2024-06-03 19:48
Modified
2024-09-18 08:47
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 7
Notes
Topic
New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat Single Sign-On 7.6.9 on RHEL 7 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Low and package name \u0027rh-sso7-keycloak\u0027. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis release of Red Hat Single Sign-On 7.6.9 on RHEL 7 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3566",
"url": "https://access.redhat.com/errata/RHSA-2024:3566"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3566.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 7",
"tracking": {
"current_release_date": "2024-09-18T08:47:45+00:00",
"generator": {
"date": "2024-09-18T08:47:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3566",
"initial_release_date": "2024-06-03T19:48:58+00:00",
"revision_history": [
{
"date": "2024-06-03T19:48:58+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T19:48:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:47:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Single Sign-On 7.6 for RHEL 7 Server",
"product": {
"name": "Red Hat Single Sign-On 7.6 for RHEL 7 Server",
"product_id": "7Server-RHSSO-7.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:red_hat_single_sign_on:7.6::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Single Sign-On"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"product": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"product_id": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak@18.0.14-1.redhat_00001.1.el7sso?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"product": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"product_id": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak@18.0.14-1.redhat_00001.1.el7sso?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"product": {
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"product_id": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak-server@18.0.14-1.redhat_00001.1.el7sso?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch as a component of Red Hat Single Sign-On 7.6 for RHEL 7 Server",
"product_id": "7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch"
},
"product_reference": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"relates_to_product_reference": "7Server-RHSSO-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src as a component of Red Hat Single Sign-On 7.6 for RHEL 7 Server",
"product_id": "7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src"
},
"product_reference": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"relates_to_product_reference": "7Server-RHSSO-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch as a component of Red Hat Single Sign-On 7.6 for RHEL 7 Server",
"product_id": "7Server-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch"
},
"product_reference": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"relates_to_product_reference": "7Server-RHSSO-7.6"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"7Server-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"7Server-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3566"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"7Server-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.noarch",
"7Server-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el7sso.src",
"7Server-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el7sso.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3575
Vulnerability from csaf_redhat
Published
2024-06-03 21:26
Modified
2024-09-18 08:47
Summary
Red Hat Security Advisory: Red Hat build of Keycloak 24.0.5 enhancement and security update
Notes
Topic
An update is now available for Red Hat build of Keycloak.
Red Hat Product Security has rated this update as having a security impact of
Low. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat build of Keycloak 24.0.5 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat build of Keycloak.\n\nRed Hat Product Security has rated this update as having a security impact of\nLow. A Common Vulnerability Scoring System (CVSS) base score, which gives\na detailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat build of Keycloak 24.0.5 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nSecurity Fix(es):\n* exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s)\nlisted in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3575",
"url": "https://access.redhat.com/errata/RHSA-2024:3575"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3575.json"
}
],
"title": "Red Hat Security Advisory: Red Hat build of Keycloak 24.0.5 enhancement and security update",
"tracking": {
"current_release_date": "2024-09-18T08:47:36+00:00",
"generator": {
"date": "2024-09-18T08:47:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3575",
"initial_release_date": "2024-06-03T21:26:15+00:00",
"revision_history": [
{
"date": "2024-06-03T21:26:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T21:26:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:47:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Build of Keycloak",
"product": {
"name": "Red Hat Build of Keycloak",
"product_id": "Red Hat Build of Keycloak",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:build_keycloak:22"
}
}
}
],
"category": "product_family",
"name": "Red Hat build of Keycloak"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Build of Keycloak"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.",
"product_ids": [
"Red Hat Build of Keycloak"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3575"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Build of Keycloak"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Build of Keycloak"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3572
Vulnerability from csaf_redhat
Published
2024-06-03 20:00
Modified
2024-09-18 08:48
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update
Notes
Topic
A security update is now available for Red Hat Single Sign-On 7.6 from the Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
<< AUTOMATICALLY GENERATED, EDIT PLEASE >>
Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat Single Sign-On 7.6.9 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A security update is now available for Red Hat Single Sign-On 7.6 from the Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Low and package name \u0027rh-sso7-keycloak\u0027. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "\u003c\u003c AUTOMATICALLY GENERATED, EDIT PLEASE \u003e\u003e\nRed Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis release of Red Hat Single Sign-On 7.6.9 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3572",
"url": "https://access.redhat.com/errata/RHSA-2024:3572"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3572.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update",
"tracking": {
"current_release_date": "2024-09-18T08:48:10+00:00",
"generator": {
"date": "2024-09-18T08:48:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3572",
"initial_release_date": "2024-06-03T20:00:35+00:00",
"revision_history": [
{
"date": "2024-06-03T20:00:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T20:00:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:48:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Single Sign-On 7",
"product": {
"name": "Red Hat Single Sign-On 7",
"product_id": "Red Hat Single Sign-On 7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:red_hat_single_sign_on:7.6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Single Sign-On"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Single Sign-On 7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).",
"product_ids": [
"Red Hat Single Sign-On 7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3572"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Single Sign-On 7"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Single Sign-On 7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3573
Vulnerability from csaf_redhat
Published
2024-06-03 21:13
Modified
2024-09-18 08:47
Summary
Red Hat Security Advisory: Red Hat build of Keycloak 22.0.11 Images enhancement and security update
Notes
Topic
New images are available for Red Hat build of Keycloak 22.0.11 and Red Hat build of Keycloak 22.0.11 Operator, running on OpenShift Container Platform
Red Hat Product Security has rated this update as having a security impact of
Low. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat build of Keycloak is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat build of Keycloak for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You can also manage user accounts for web applications, mobile applications, and RESTful web services.
Red Hat build of Keycloak Operator for OpenShift simplifies deployment and management of Keycloak 22.0.11 clusters.
This erratum releases new images for Red Hat build of Keycloak 22.0.11 for use within the OpenShift Container Platform cloud computing Platform-as-a-Service (PaaS) for on-premise or private cloud deployments, aligning with the standalone product release.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "New images are available for Red Hat build of Keycloak 22.0.11 and Red Hat build of Keycloak 22.0.11 Operator, running on OpenShift Container Platform\n\nRed Hat Product Security has rated this update as having a security impact of\nLow. A Common Vulnerability Scoring System (CVSS) base score, which gives\na detailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat build of Keycloak is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat build of Keycloak for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You can also manage user accounts for web applications, mobile applications, and RESTful web services.\nRed Hat build of Keycloak Operator for OpenShift simplifies deployment and management of Keycloak 22.0.11 clusters.\nThis erratum releases new images for Red Hat build of Keycloak 22.0.11 for use within the OpenShift Container Platform cloud computing Platform-as-a-Service (PaaS) for on-premise or private cloud deployments, aligning with the standalone product release.\n\nSecurity Fix(es):\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s)\nlisted in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3573",
"url": "https://access.redhat.com/errata/RHSA-2024:3573"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3573.json"
}
],
"title": "Red Hat Security Advisory: Red Hat build of Keycloak 22.0.11 Images enhancement and security update",
"tracking": {
"current_release_date": "2024-09-18T08:47:20+00:00",
"generator": {
"date": "2024-09-18T08:47:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3573",
"initial_release_date": "2024-06-03T21:13:15+00:00",
"revision_history": [
{
"date": "2024-06-03T21:13:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T21:13:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:47:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat build of Keycloak 22",
"product": {
"name": "Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:build_keycloak:22::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat build of Keycloak"
},
{
"branches": [
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"product": {
"name": "rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"product_id": "rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7?arch=s390x\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9\u0026tag=22-15"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"product": {
"name": "rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"product_id": "rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758?arch=s390x\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9-operator\u0026tag=22-18"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"product": {
"name": "rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"product_id": "rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f?arch=amd64\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9\u0026tag=22-15"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"product": {
"name": "rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"product_id": "rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5?arch=amd64\u0026repository_url=registry.redhat.io/rhbk/keycloak-operator-bundle\u0026tag=22.0.11-2"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"product": {
"name": "rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"product_id": "rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4?arch=amd64\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9-operator\u0026tag=22-18"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le",
"product": {
"name": "rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le",
"product_id": "rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290?arch=ppc64le\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9\u0026tag=22-15"
}
}
},
{
"category": "product_version",
"name": "rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"product": {
"name": "rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"product_id": "rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16?arch=ppc64le\u0026repository_url=registry.redhat.io/rhbk/keycloak-rhel9-operator\u0026tag=22-18"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64 as a component of Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22:rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64"
},
"product_reference": "rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"relates_to_product_reference": "9Base-RHBK-22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le as a component of Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le"
},
"product_reference": "rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"relates_to_product_reference": "9Base-RHBK-22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64 as a component of Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64"
},
"product_reference": "rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"relates_to_product_reference": "9Base-RHBK-22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x as a component of Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x"
},
"product_reference": "rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"relates_to_product_reference": "9Base-RHBK-22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x as a component of Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x"
},
"product_reference": "rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"relates_to_product_reference": "9Base-RHBK-22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64 as a component of Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64"
},
"product_reference": "rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"relates_to_product_reference": "9Base-RHBK-22"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le as a component of Red Hat build of Keycloak 22",
"product_id": "9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le"
},
"product_reference": "rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le",
"relates_to_product_reference": "9Base-RHBK-22"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHBK-22:rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.",
"product_ids": [
"9Base-RHBK-22:rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3573"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHBK-22:rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHBK-22:rhbk/keycloak-operator-bundle@sha256:029419edb428ff08c96c27985892a532575e1681a0a603a571de7c40ddcb8dc5_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:3088c5f0f714a1e58455526ffe8ed221fcde410f98c09f001fc87721166f8f16_ppc64le",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:424e978364f2873c9b50cab3400bd88f2a41c0bc21efb4c5d84bfc4f644be1b4_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9-operator@sha256:84657b43cc9efa38eb3092c3a8af58d65f11d0668ac97239f4f90c1a48312758_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:31a6a24fd944d1ad702b29d94fae0f396aec4a53aea785fd726451bf746f38f7_s390x",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:505d461864d7b1fc31c503eb23a26838f6b3f8968c9f3cbf72dada89d5617e8f_amd64",
"9Base-RHBK-22:rhbk/keycloak-rhel9@sha256:bee7dedbcafe6d67b5ca3be404c026740d7f6e659b377d27be60e82d89809290_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3567
Vulnerability from csaf_redhat
Published
2024-06-03 19:48
Modified
2024-09-18 08:47
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 8
Notes
Topic
New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Low and package name 'rh-sso7-keycloak'. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat Single Sign-On 7.6.9 on RHEL 8 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "New Red Hat Single Sign-On 7.6.9 package are now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Low and package name \u0027rh-sso7-keycloak\u0027. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis release of Red Hat Single Sign-On 7.6.9 on RHEL 8 serves as a replacement for Red Hat Single Sign-On 7.6.8, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3567",
"url": "https://access.redhat.com/errata/RHSA-2024:3567"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3567.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Single Sign-On 7.6.9 security update on RHEL 8",
"tracking": {
"current_release_date": "2024-09-18T08:47:53+00:00",
"generator": {
"date": "2024-09-18T08:47:53+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3567",
"initial_release_date": "2024-06-03T19:48:57+00:00",
"revision_history": [
{
"date": "2024-06-03T19:48:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T19:48:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:47:53+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Single Sign-On 7.6 for RHEL 8",
"product": {
"name": "Red Hat Single Sign-On 7.6 for RHEL 8",
"product_id": "8Base-RHSSO-7.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:red_hat_single_sign_on:7.6::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Single Sign-On"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"product": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"product_id": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak@18.0.14-1.redhat_00001.1.el8sso?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"product": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"product_id": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak@18.0.14-1.redhat_00001.1.el8sso?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"product": {
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"product_id": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-sso7-keycloak-server@18.0.14-1.redhat_00001.1.el8sso?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch as a component of Red Hat Single Sign-On 7.6 for RHEL 8",
"product_id": "8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch"
},
"product_reference": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"relates_to_product_reference": "8Base-RHSSO-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src as a component of Red Hat Single Sign-On 7.6 for RHEL 8",
"product_id": "8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src"
},
"product_reference": "rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"relates_to_product_reference": "8Base-RHSSO-7.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch as a component of Red Hat Single Sign-On 7.6 for RHEL 8",
"product_id": "8Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch"
},
"product_reference": "rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"relates_to_product_reference": "8Base-RHSSO-7.6"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"8Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"8Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3567"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"8Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.noarch",
"8Base-RHSSO-7.6:rh-sso7-keycloak-0:18.0.14-1.redhat_00001.1.el8sso.src",
"8Base-RHSSO-7.6:rh-sso7-keycloak-server-0:18.0.14-1.redhat_00001.1.el8sso.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
rhsa-2024_3574
Vulnerability from csaf_redhat
Published
2024-06-03 21:10
Modified
2024-09-18 08:47
Summary
Red Hat Security Advisory: Red Hat build of Keycloak 22.0.11 enhancement and security update
Notes
Topic
New Red Hat build of Keycloak 22.0.11 packages are available from the Customer Portal
Red Hat Product Security has rated this update as having a security impact of
Low. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat build of Keycloak 22.0.11 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat build of Keycloak 22.0.11 serves as a replacement for Red Hat Single Sign-On 7.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* exposure of sensitive information in Pushed Authorization Requests (PAR)
KC_RESTART cookie (CVE-2024-4540)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "New Red Hat build of Keycloak 22.0.11 packages are available from the Customer Portal\n\nRed Hat Product Security has rated this update as having a security impact of\nLow. A Common Vulnerability Scoring System (CVSS) base score, which gives\na detailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat build of Keycloak 22.0.11 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\nThis release of Red Hat build of Keycloak 22.0.11 serves as a replacement for Red Hat Single Sign-On 7.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n* exposure of sensitive information in Pushed Authorization Requests (PAR)\nKC_RESTART cookie (CVE-2024-4540)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE page(s)\nlisted in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:3574",
"url": "https://access.redhat.com/errata/RHSA-2024:3574"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3574.json"
}
],
"title": "Red Hat Security Advisory: Red Hat build of Keycloak 22.0.11 enhancement and security update",
"tracking": {
"current_release_date": "2024-09-18T08:47:11+00:00",
"generator": {
"date": "2024-09-18T08:47:11+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2024:3574",
"initial_release_date": "2024-06-03T21:10:43+00:00",
"revision_history": [
{
"date": "2024-06-03T21:10:43+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-03T21:10:43+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-18T08:47:11+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Build of Keycloak",
"product": {
"name": "Red Hat Build of Keycloak",
"product_id": "Red Hat Build of Keycloak",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:build_keycloak:22"
}
}
}
],
"category": "product_family",
"name": "Red Hat build of Keycloak"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Manuel Schallar"
]
}
],
"cve": "CVE-2024-4540",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-05-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279303"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Build of Keycloak"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"category": "external",
"summary": "RHBZ#2279303",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
}
],
"release_date": "2024-06-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.",
"product_ids": [
"Red Hat Build of Keycloak"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:3574"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Build of Keycloak"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Build of Keycloak"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "keycloak: exposure of sensitive information in Pushed Authorization Requests (PAR) KC_RESTART cookie"
}
]
}
ghsa-4vrx-8phj-x3mg
Vulnerability from github
Published
2024-06-03 18:30
Modified
2024-07-30 23:52
Severity
Summary
Duplicate Advisory: Keycloak exposes sensitive information in Pushed Authorization Requests (PAR)
Details
Duplicate Advisory
This advisory has been withdrawn because it is a duplicate of GHSA-69fp-7c8p-crjr. This link is maintained to preserve external references.
Original Description
A flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server's HTTP response to a request_uri authorization request, possibly leading to an information disclosure vulnerability.
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.keycloak:keycloak-services"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "24.0.5"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [],
"database_specific": {
"cwe_ids": [
"CWE-200"
],
"github_reviewed": true,
"github_reviewed_at": "2024-07-30T23:52:52Z",
"nvd_published_at": "2024-06-03T16:15:08Z",
"severity": "HIGH"
},
"details": "## Duplicate Advisory\nThis advisory has been withdrawn because it is a duplicate of GHSA-69fp-7c8p-crjr. This link is maintained to preserve external references.\n\n## Original Description\nA flaw was found in Keycloak in OAuth 2.0 Pushed Authorization Requests (PAR). Client-provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a `request_uri` authorization request, possibly leading to an information disclosure vulnerability.",
"id": "GHSA-4vrx-8phj-x3mg",
"modified": "2024-07-30T23:52:52Z",
"published": "2024-06-03T18:30:50Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3566"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3567"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3568"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3570"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3572"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3573"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3574"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3575"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3576"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
],
"summary": "Duplicate Advisory: Keycloak exposes sensitive information in Pushed Authorization Requests (PAR)",
"withdrawn": "2024-07-30T23:52:52Z"
}
ghsa-69fp-7c8p-crjr
Vulnerability from github
Published
2024-06-10 18:36
Modified
2024-07-31 14:51
Severity
Summary
Keycloak exposes sensitive information in Pushed Authorization Requests (PAR)
Details
A flaw was found in Keycloak in the OAuth 2.0 Pushed Authorization Requests (PAR). Client provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server's HTTP response to a request_uri authorization request. This could lead to an information disclosure vulnerability.
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.keycloak:keycloak-services"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "24.0.5"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-4540"
],
"database_specific": {
"cwe_ids": [
"CWE-200",
"CWE-922"
],
"github_reviewed": true,
"github_reviewed_at": "2024-06-10T18:36:56Z",
"nvd_published_at": null,
"severity": "HIGH"
},
"details": "A flaw was found in Keycloak in the OAuth 2.0 Pushed Authorization Requests (PAR). Client provided parameters were found to be included in plain text in the KC_RESTART cookie returned by the authorization server\u0027s HTTP response to a request_uri authorization request. This could lead to an information disclosure vulnerability.",
"id": "GHSA-69fp-7c8p-crjr",
"modified": "2024-07-31T14:51:21Z",
"published": "2024-06-10T18:36:56Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/keycloak/keycloak/security/advisories/GHSA-69fp-7c8p-crjr"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4540"
},
{
"type": "WEB",
"url": "https://github.com/keycloak/keycloak/commit/2191cc26ae6deb52eeaf74046027b65804d16fd0"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3566"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3567"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3568"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3570"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3572"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3573"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3574"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3575"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2024:3576"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2024-4540"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279303"
},
{
"type": "PACKAGE",
"url": "https://github.com/keycloak/keycloak"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
],
"summary": "Keycloak exposes sensitive information in Pushed Authorization Requests (PAR)"
}
wid-sec-w-2024-1279
Vulnerability from csaf_certbund
Published
2024-06-03 22:00
Modified
2024-06-03 22:00
Summary
Red Hat Single Sign On und Keycloak: Schwachstelle ermöglicht Offenlegung von Informationen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Single Sign-On ist ein eigenständiger Server, basierend auf dem Keycloak Projekt.
Keycloak ermöglicht Single Sign-On mit Identity and Access Management für moderne Anwendungen und Dienste.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Single Sign On und Keycloak ausnutzen, um Informationen offenzulegen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Single Sign-On ist ein eigenst\u00e4ndiger Server, basierend auf dem Keycloak Projekt.\r\nKeycloak erm\u00f6glicht Single Sign-On mit Identity and Access Management f\u00fcr moderne Anwendungen und Dienste.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Single Sign On und Keycloak ausnutzen, um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1279 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1279.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1279 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1279"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3566"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3567"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3570"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3572"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3573"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3574"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3575"
},
{
"category": "external",
"summary": "Red Hat Security Advisory vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3576"
}
],
"source_lang": "en-US",
"title": "Red Hat Single Sign On und Keycloak: Schwachstelle erm\u00f6glicht Offenlegung von Informationen",
"tracking": {
"current_release_date": "2024-06-03T22:00:00.000+00:00",
"generator": {
"date": "2024-06-04T08:37:30.288+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.0"
}
},
"id": "WID-SEC-W-2024-1279",
"initial_release_date": "2024-06-03T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-06-03T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c24.0.5",
"product": {
"name": "Open Source Keycloak \u003c24.0.5",
"product_id": "T035160",
"product_identification_helper": {
"cpe": "cpe:/a:keycloak:keycloak:24.0.5"
}
}
},
{
"category": "product_version_range",
"name": "\u003c22.0.11",
"product": {
"name": "Open Source Keycloak \u003c22.0.11",
"product_id": "T035161",
"product_identification_helper": {
"cpe": "cpe:/a:keycloak:keycloak:22.0.11"
}
}
}
],
"category": "product_name",
"name": "Keycloak"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.6.9",
"product": {
"name": "Red Hat Single Sign On \u003c7.6.9",
"product_id": "T035152",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:single_sign_on:7.6.9"
}
}
}
],
"category": "product_name",
"name": "Single Sign On"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-4540",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat Single Sign On und Keycloak. Dieser Fehler besteht in der OAuth 2.0 Pushed Authorization Requests (PAR) Komponente, da sensible Daten im Klartext in der http-Antwort gespeichert sind. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen."
}
],
"release_date": "2024-06-03T22:00:00Z",
"title": "CVE-2024-4540"
}
]
}
Loading...