FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

keycloak -- Multiple security fixes

Affected packages
		keycloak	<	26.0.8

Details

VuXML ID	5e2bd238-d2bb-11ef-bc0e-1c697a616631
Discovery	2025-01-13
Entry	2025-01-13

Keycloak reports:

This update includes 2 security fixes:

CVE-2024-11734: Unrestricted admin use of system and environment variables

CVE-2024-11736: Denial of Service in Keycloak Server via Security Headers

[source]

References

CVE Name	CVE-2024-11734
CVE Name	CVE-2024-11736