Keycloak had a very severe security issue in the LDAP module that had been resolved with Keycloak 8.0.1. Apart from the release notes page, how do I subscribe to security advisories such as the mentioned one? Is there a mailing list I should subscribe to?
I don’t refer to anything specific.
All available resources are on the mentioned page, and if there’s nothing listed what you’re looking for, then it’s probably not available.
There is not security advisory for the open source project Keycloak. If you run Keycloak, you always should use the most recent version.
If you’re looking for something supported in terms of security patches, think about using the commercial supported “Red Hat SSO”.