New images are available for Red Hat build of Keycloak 26.0.10 and Red Hat
 build of Keycloak 26.0.10 Operator, running on OpenShift Container Platform

Red Hat build of Keycloak is an integrated sign-on solution, available as a Red
 Hat JBoss Middleware for OpenShift containerized image. The Red Hat build of Keycloak for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You can also manage user accounts for web applications, mobile applications, and RESTful web services.
Red Hat build of Keycloak Operator for OpenShift simplifies deployment and
 management of Keycloak 26.0.10 clusters.
This erratum releases new images for Red Hat build of Keycloak 26.0.10 for use
 within the OpenShift Container Platform cloud computing Platform-as-a-Service (PaaS) for on-premise or private cloud deployments, aligning with the standalone product release.

Security fixes:
* Authentication Bypass Due to Missing LDAP Bind After Password Reset in
 Keycloak (CVE-2025-0604)
* Improper Authorization in Keycloak Organization Mapper Allows Unauthorized
 Organization Claims (CVE-2025-1391)

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2025-0604: Improper Authentication (CWE-287)
CVE-2025-1391: Improper Access Control (CWE-284)