CESA-2019:2137 -- centos 7 keycloak-httpd-client-installID: oval:org.secpod.oval:def:205296 | Date: (C)2019-09-17 (M)2023-06-16 |
Class: PATCH | Family: unix |
The keycloak-httpd-client-install packages provide various libraries and tools that can automate and simplify the configuration of Apache httpd authentication modules when registering as a Red Hat Single Sign-On federated Identity Provider client. The following packages have been upgraded to a later upstream version: keycloak-httpd-client-install . Security Fix: * keycloak-httpd-client-install: unsafe /tmp log file in --log-file option in keycloak_cli.py * keycloak-httpd-client-install: unsafe use of -p/--admin-password on command line For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.
Product: |
keycloak-httpd-client-install |