{"id":"RHSA-2022:7409","summary":"Red Hat Security Advisory: Red Hat Single Sign-On 7.6.1 security update on RHEL 7","modified":"2026-03-28T10:01:29Z","published":"2024-09-29T19:07:31Z","upstream":["CVE-2020-36518","CVE-2021-42392","CVE-2021-42575","CVE-2021-43797","CVE-2022-0084","CVE-2022-0225","CVE-2022-0853","CVE-2022-0866","CVE-2022-1319","CVE-2022-23913","CVE-2022-2668"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2022:7409"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2031958"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2039403"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2040268"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2060929"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064226"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2064698"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2115392"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7409.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-36518"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-36518"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-36518"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-57j2-w4cx-62h2"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-42392"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-42392"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-42392"},{"type":"ARTICLE","url":"https://github.com/h2database/h2database/security/advisories/GHSA-h376-j262-vhq6"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-42575"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2027195"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-42575"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-42575"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-43797"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-43797"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43797"},{"type":"ARTICLE","url":"https://github.com/netty/netty/security/advisories/GHSA-wx5j-54mm-rqqq"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-0084"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-0084"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0084"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-0225"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-0225"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0225"},{"type":"ARTICLE","url":"https://github.com/keycloak/keycloak/security/advisories/GHSA-755v-r4x4-qf7m"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-0853"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2060725"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-0853"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0853"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-0866"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-0866"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0866"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-1319"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2073890"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-1319"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1319"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-2668"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-2668"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2668"},{"type":"ARTICLE","url":"https://github.com/keycloak/keycloak/security/advisories/GHSA-wf7g-7h6h-678v"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-23913"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2063601"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-23913"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-23913"},{"type":"ARTICLE","url":"https://lists.apache.org/thread/fjynj57rd99s814rdn5hzvmx8lz403q2"}],"affected":[{"package":{"name":"rh-sso7-keycloak","ecosystem":"Red Hat:red_hat_single_sign_on:7.6::el7","purl":"pkg:rpm/redhat/rh-sso7-keycloak"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:18.0.3-1.redhat_00001.1.el7sso"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:7409.json"}},{"package":{"name":"rh-sso7-keycloak-server","ecosystem":"Red Hat:red_hat_single_sign_on:7.6::el7","purl":"pkg:rpm/redhat/rh-sso7-keycloak-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:18.0.3-1.redhat_00001.1.el7sso"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:7409.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}