-
Component Upgrade
-
Resolution: Done-Errata
-
Major
-
None
-
None
-
False
-
-
False
-
-
-
-
-
-
-
Tag: https://github.com/wildfly-security/wildfly-elytron/releases/tag/2.2.11.Final
Diff: https://github.com/wildfly-security/wildfly-elytron/compare/2.2.10.Final...2.2.11.Final
Hash: c1bed58a97e20c71ea35abc0ac7677262982558f
- incorporates
-
JBEAP-30001 [GSS](8.0.z) ELY-2753 - Add connection-timeout-millis, connection-ttl-millis and socket-timeout-millis to OidcJsonConfiguration to allow oidc.json configuration to parse these attributes
-
- Verified
-
-
JBEAP-30011 (8.0.z) ELY-2893 - No SocketConfig is set for Connection Manager in HttpClientBuilder which can cause indefinetly hangs
-
- Verified
-
-
JBEAP-29984 (8.0.z) ELY-2903 - Fix for CVE-2024-12369 (ELY-2887) breaks OIDC usage with refresh tokens
-
- Closed
-
-
JBEAP-29863 [GSS](8.0.z) Upgrade WildFly Elytron from 2.2.9.Final-redhat-00001 to 2.2.10.Final-redhat-00001
-
- Closed
-
- links to
-
RHSA-2025:145580 Red Hat JBoss Enterprise Application Platform 8.0.8 Security update
-
RHSA-2025:145581 Red Hat JBoss Enterprise Application Platform 8.0.8 Security update
-
RHSA-2025:145582 Red Hat JBoss Enterprise Application Platform 8.0.8 Security update