[ELY-2887] Add a nonce to OIDC requests for CVE-2024-12369 - Red Hat Issue Tracker

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 3.0.0.Alpha1, 2.6.2.Final, 2.7.0.CR1, 2.2.9.Final
Affects Version/s: 2.6.1.Final
Component/s: API / SPI
Labels:
None

Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/2253, https://github.com/wildfly-security/wildfly-elytron/pull/2261

https://nvd.nist.gov/vuln/detail/CVE-2024-12369)

Assignee:: r searls

Reporter:: r searls

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2025/03/14 6:35 PM

Updated:: 2025/03/19 3:33 PM

Resolved:: 2025/03/18 9:34 PM