GHSA-3m86-c9x3-vwm9: Graylog vulnerable to privilege escalation through API tokens

GHSA-3q26-f695-pp76: @cyanheads/git-mcp-server vulnerable to command injection in several tools

A flaw was found in Keycloak. In certain conditions, this issue may allow a remote unauthenticated attacker to block other accounts from logging in.

**Keycloak DoS via account lockout**

Low severity GitHub Reviewed Published Feb 29, 2024 to the GitHub Advisory Database • Updated Feb 29, 2024