RedHat: RHSA-2020-4344:01 Moderate: Open Liberty 20.0.0.11 Runtime security
Summary
Open Liberty is a lightweight open framework for building fast and
efficient cloud-native Java microservices.
This release of Open Liberty 20.0.0.11 serves as a replacement for Open
Liberty 20.0.0.10 and includes enhancements. For specific information about
this release, see links in the References section.
Security Fix(es):
* Vulnerability in Hibernate Validator affects WebSphere Application Server
Liberty (CVE-2020-10693)
For more details about the security issue(s), see the IBM Security Bulletin
links for each CVE, listed in the References section.
Summary
Solution
Before applying the update, back up your existing installation, including
all applications, configuration files, databases and database settings, and
so on.
The References section of this erratum contains a download link (you must
log in to download the update).
4. JIRA issues fixed (https://issues.redhat.com/plugins/servlet/samlsso
IBMRT-98 - Release Open Liberty 20.0.0.11
References
https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=open.liberty&downloadType=distributions&version=20.0.0.11 https://www.ibm.com/support/pages/node/6348216 https://access.redhat.com/articles/4544981 https://access.redhat.com/products/open-liberty https://access.redhat.com/documentation/en-us/open_liberty/
Package List
Topic
Open Liberty 20.0.0.11 Runtime is now available from the Customer Portal.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.
Topic
Relevant Releases Architectures
Bugs Fixed