rpm package
opensuse/apache2-mod_auth_openidc&distro=openSUSE Leap 15.1
pkg:rpm/opensuse/apache2-mod_auth_openidc&distro=openSUSE%20Leap%2015.1
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-20479 | Med | 6.1 | < 2.3.8-lp151.2.6.1 | 2.3.8-lp151.2.6.1 | Feb 20, 2020 | A flaw was found in mod_auth_openidc before version 2.4.1. An open redirect issue exists in URLs with a slash and backslash at the beginning. | |
| CVE-2019-14857 | Med | 6.1 | < 2.3.8-lp151.2.3.1 | 2.3.8-lp151.2.3.1 | Nov 26, 2019 | A flaw was found in mod_auth_openidc before version 2.4.0.1. An open redirect issue exists in URLs with trailing slashes similar to CVE-2019-3877 in mod_auth_mellon. |
- affected < 2.3.8-lp151.2.6.1fixed 2.3.8-lp151.2.6.1
A flaw was found in mod_auth_openidc before version 2.4.1. An open redirect issue exists in URLs with a slash and backslash at the beginning.
- affected < 2.3.8-lp151.2.3.1fixed 2.3.8-lp151.2.3.1
A flaw was found in mod_auth_openidc before version 2.4.0.1. An open redirect issue exists in URLs with trailing slashes similar to CVE-2019-3877 in mod_auth_mellon.