RHSA-2021:2439: Red Hat Security Advisory: Open Liberty 21.0.0.6 Runtime security update

Open Liberty 21.0.0.6 Runtime is now available from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 21.0.0.6 serves as a replacement for Open Liberty 21.0.0.3, and includes a security fix and enhancements. For specific information about this release, see links in the References section. Security Fix(es):

• myfaces: Cross-site request forgery vulnerability in Apache MyFaces (CVE-2021-26296) For more details about the security issue(s), see the IBM Security Bulletin links for each CVE, listed in the References section.