RHSA-2023:2099: Important: Red Hat Integration Camel for Spring Boot 3.18.3 Patch 1 security update
A patch is now available for Camel for Spring Boot 3.18.3. The purpose of this text-only errata is to inform you about the security issues fixed in this release.Security Fix(es): json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370) springframework: Spring Expression DoS Vulnerability (CVE-2023-20863) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2023:2099?
The severity of RHSA-2023:2099 is classified as important.
How do I fix RHSA-2023:2099?
You can fix RHSA-2023:2099 by updating Camel to the latest version provided in the security advisory.
What vulnerabilities are addressed in RHSA-2023:2099?
RHSA-2023:2099 addresses an Uncontrolled Resource Consumption vulnerability in json-smart.
Which software versions are affected by RHSA-2023:2099?
The security issues fixed in RHSA-2023:2099 affect Camel for Spring Boot 3.18.3.
How can I check if my system is vulnerable to RHSA-2023:2099?
You can check your system for vulnerability to RHSA-2023:2099 by verifying the version of Camel installed against the patched version in the advisory.