RHSA-2026:19098HighCVSS 7.5
Red Hat Security Advisory: Red Hat build of Quarkus 3.27.3.SP2 security update
🔗 CVE IDs covered (1)
📋 Description
CVE-2026-42198 — jdbc.postgresql.org: pgjdbc: Client-side Denial of Service via malicious SCRAM-SHA-256 authentication
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2026:19098
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://access.redhat.com/products/quarkus/
- externalhttps://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=redhat.quarkus&downloadType=distributions&version=3.27.3.SP2
- externalhttps://docs.redhat.com/en/documentation/red_hat_build_of_quarkus/3.27
- externalhttps://issues.redhat.com/browse/QUARKUS-7768
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19098.json