VYPR

rpm package

suse/apache2-mod_auth_openidc&distro=SUSE Linux Enterprise Module for Server Applications 15 SP1

pkg:rpm/suse/apache2-mod_auth_openidc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP1

Vulnerabilities (2)

  • CVE-2019-20479MedFeb 20, 2020
    affected < 2.3.8-3.7.1fixed 2.3.8-3.7.1

    A flaw was found in mod_auth_openidc before version 2.4.1. An open redirect issue exists in URLs with a slash and backslash at the beginning.

  • CVE-2019-14857MedNov 26, 2019
    affected < 2.3.8-3.3.1fixed 2.3.8-3.3.1

    A flaw was found in mod_auth_openidc before version 2.4.0.1. An open redirect issue exists in URLs with trailing slashes similar to CVE-2019-3877 in mod_auth_mellon.