RHSA-2022:5596: Moderate: Red Hat build of Quarkus 2.7.6 release and security update
Published Jul 19, 2022
·Updated
This release of Red Hat build of Quarkus 2.7.6 includes security updates, bugfixes, and enhancements. For more information, see the release notes page listedin the References section.Security Fix(es): CVE-2020-36518 jackson-databind: denial of service via a large depth of nested objects [quarkus-2]
Affected Software
1 affected component
Red Hat Quarkus
Remediation
Event History
Jul 19, 2022
Advisory Published
12:00 AM
Data Sourced
12:00 AM
RemedyDescriptionAffected Software
Frequently Asked Questions
1
What is the severity of RHSA-2022:5596?
The severity of RHSA-2022:5596 is classified as moderate.
2
How do I fix RHSA-2022:5596?
To fix RHSA-2022:5596, update your Red Hat build of Quarkus to version 2.7.6 or later.
3
Which vulnerability does RHSA-2022:5596 address?
RHSA-2022:5596 addresses CVE-2020-36518, which can lead to a denial of service via large input.
4
What is included in the RHSA-2022:5596 release?
The RHSA-2022:5596 release includes security updates, bug fixes, and enhancements.
5
Is RHSA-2022:5596 applicable to all versions of Quarkus?
RHSA-2022:5596 is specifically for the Red Hat build of Quarkus version 2.7.6.