Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2026/VULN277
_____________________________________________________________________

DATE                : 10/03/2026

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running pac4j-jwt versions prior
                            to 4.5.9, 5.7.9, 6.3.3.

=====================================================================
https://www.pac4j.org/blog/security-advisory-pac4j-jwt-jwtauthenticator.html
_____________________________________________________________________

Security advisory for pac4j-jwt (JwtAuthenticator)

A security vulnerability affecting the JwtAuthenticator in the
pac4j-jwt module has been identified and fixed.

To stay safe, you MUST upgrade:

    If you use the 4.x line: upgrade to 4.5.9 (or newer)
    If you use the 5.x line: upgrade to 5.7.9 (or newer)
    If you use the 6.x line: upgrade to 6.3.3 (or newer)

No additional details will be shared in this post.

This vulnerability was discovered by CodeAnt AI Security Research Team,
part of https://www.codeant.ai/, [email protected].



=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================