Skip to content

[GHSA-gv3v-2cpp-3pmq] Keycloak logs sensitive headers#7314

Closed
eminaktas wants to merge 1 commit into
eminaktas/advisory-improvement-7314from
eminaktas-GHSA-gv3v-2cpp-3pmq
Closed

[GHSA-gv3v-2cpp-3pmq] Keycloak logs sensitive headers#7314
eminaktas wants to merge 1 commit into
eminaktas/advisory-improvement-7314from
eminaktas-GHSA-gv3v-2cpp-3pmq

Conversation

@eminaktas
Copy link
Copy Markdown

@eminaktas eminaktas commented Apr 7, 2026

Updates

  • Affected products

Comments
This CVE is also fixed from 25.5.6 and 25.4.11

25.5.6: keycloak/keycloak@9622f55
25.4.11: keycloak/keycloak@5a3cdb7

@github-actions github-actions Bot changed the base branch from main to eminaktas/advisory-improvement-7314 April 7, 2026 11:20
@yhidad31
Copy link
Copy Markdown

yhidad31 commented Apr 8, 2026

Hellp @eminaktas We have updated the advisory to include 25.5.6, as it is the only patched version published to the Maven registry. The Details and Resources sections have been updated to include all fixed versions.

Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!

@yhidad31 yhidad31 closed this Apr 8, 2026
@github-actions github-actions Bot deleted the eminaktas-GHSA-gv3v-2cpp-3pmq branch April 8, 2026 21:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@eminaktas @yhidad31