RHSA-2023:3667: Moderate: Red Hat Integration Camel Extensions for Quarkus 2.13.3 security update

Published Jun 19, 2023

Updated

A security update for Camel Extensions for Quarkus 2.13.3 is now available. The purpose of this text-only errata is to inform you about the security issues fixed. Red Hat Product Security has rated this update as having an impact of Important.A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Security Fix(es): CVE-2023-1436 jettison: Uncontrolled Recursion in JSONArray CVE-2021-37533 apache-commons-net: FTP client trusts the host from PASV response by default

Affected Software

1 affected component

Red Hat Integration Camel Extensions for Quarkus

Remediation

Event History

Aug 15, 2024

Advisory Published

via Red Hat·05:08 AM

Data Sourced

via Red Hat·05:08 AM

RemedyDescriptionAffected Software

Frequently Asked Questions

What is the severity of RHSA-2023:3667?

RHSA-2023:3667 is rated as having an Important impact.

How do I fix RHSA-2023:3667?

To fix RHSA-2023:3667, you need to update your Camel Extensions for Quarkus to version 2.13.3 or later.

What products are affected by RHSA-2023:3667?

RHSA-2023:3667 affects the Camel Extensions for Quarkus.

What security issues are addressed in RHSA-2023:3667?

RHSA-2023:3667 addresses several security vulnerabilities identified in Camel Extensions for Quarkus.

Is it necessary to apply the update for RHSA-2023:3667?

Yes, applying the update for RHSA-2023:3667 is necessary to mitigate the identified security risks.