{"id":"RHSA-2017:2905","summary":"Red Hat Security Advisory: rh-sso7-keycloak security update","modified":"2026-03-18T11:30:20.028502Z","published":"2024-09-13T13:38:42Z","upstream":["CVE-2014-9970","CVE-2017-12158","CVE-2017-12159","CVE-2017-12160","CVE-2017-12197"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:2905"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_single_sign-on/7.1/html/release_notes/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1484111"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1484154"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1489161"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1503103"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/RHSSO-1122"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2905.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2014-9970"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1455566"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2014-9970"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-9970"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-12158"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-12158"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-12158"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-12159"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-12159"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-12159"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-12160"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-12160"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-12160"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-12197"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-12197"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-12197"}],"affected":[{"package":{"name":"rh-sso7-keycloak","ecosystem":"Red Hat:red_hat_single_sign_on:7::el7","purl":"pkg:rpm/redhat/rh-sso7-keycloak"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.5.14-1.Final_redhat_1.1.jbcs.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2905.json"}},{"package":{"name":"rh-sso7-keycloak-server","ecosystem":"Red Hat:red_hat_single_sign_on:7::el7","purl":"pkg:rpm/redhat/rh-sso7-keycloak-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.5.14-1.Final_redhat_1.1.jbcs.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2905.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}]}