Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Red Hat Build of OptaPlanner 8.38.0 RHSA-2023:4200-01 Important DoS Issue

red hat
Calendar Grey July 18, 2023
Dist Redhat Esm H88
The latest version of Red Hat Build of OptaPlanner 8.38.0 tackles significant security vulnerabilities.
Red Hat Build of OptaPlanner 8.38.0 for Quarkus 2.13.8 release and security update is now available

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Summary

A new release for Red Hat Build of OptaPlanner 8.38.0 for Quarkus 2.13.8 including security updates is now available. The purpose of this text-only errata is to inform you about the security issues fixed. Red Hat Product Security has rated this update as having an impact of Important.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Security Fix(es):
* CVE-2023-20883 spring-boot: Spring Boot Welcome Page DoS Vulnerability

Topics%20covered

Topics Covered

security advisory update red hat DoS important quarkus optaplanner

References

https://access.redhat.com/security/cve/CVE-2023-20883 https://access.redhat.com/security/updates/classification/#important

Package List


Severity
important
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2023:4200-01
Product: Red Hat build of OptaPlanner
Advisory URL: https://access.redhat.com/errata/RHSA-2023:4200
Issue date: 2023-07-18

Topic

Red Hat Build of OptaPlanner 8.38.0 for Quarkus 2.13.8 release and securityupdate is now available. The purpose of this text-only errata is to informyou about the security issues fixed.Red Hat Product Security has rated this update as having an impact ofImportant.A Common Vulnerability Scoring System (CVSS) base score, which gives adetailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.

Topics%20covered

Topics Covered

security advisory update red hat DoS important quarkus optaplanner

Relevant Releases Architectures

Bugs Fixed

2209342 - CVE-2023-20883 spring-boot: Spring Boot Welcome Page DoS Vulnerability

5. JIRA issues fixed (https://redhat.atlassian.net/jira/projects):

RHBOP-42 - Remove javadoc references on upstream BOM

RHBOP-49 - Include sources for antlr-runtime.jar to maven-repo.zip

RHBOP-50 - Include sources for jfreechart.jar to maven-repo.zip

RHBOP-52 - [PLANNER-2899]Nearby selection for list variable

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here