GHSA-486g-47cc-8wxf: aiocpa contains credential harvesting code

GHSA-93ww-43rr-79v3: Keycloak mTLS Authentication Bypass via Reverse Proxy TLS Termination 

GHSA-jgwc-jh89-rpgq: Keycloak proxy header handling Denial-of-Service (DoS) vulnerability

GHSA-xg58-75qf-9r67: Cilium's Layer 7 policy enforcement may not occur in policies with wildcarded port ranges

GHSA-qqwr-j9mm-fhw6: deno_doc's HTML generator vulnerable to Cross-site Scripting

If there were connection issues with the Solr server, the internal Solr URL (potentially including credentials) could be leaked to `package_search` calls as part of the returned error message

### Patches
This has been patched in CKAN 2.10.5 and 2.11.0


**CKAN may leak Solr credentials via error message in package\_search action**

Moderate severity GitHub Reviewed Published Aug 21, 2024 in ckan/ckan • Updated Aug 21, 2024

Headline

GHSA-2rqw-cfhc-35fh: CKAN may leak Solr credentials via error message in package_search action

Patches

ghsa: Latest News