VYPR

rpm package

suse/apache2-mod_auth_openidc&distro=SUSE Linux Enterprise Module for Server Applications 15 SP5

pkg:rpm/suse/apache2-mod_auth_openidc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP5

Vulnerabilities (1)

  • CVE-2024-24814HigFeb 13, 2024
    affected < 2.3.8-150100.3.28.1fixed 2.3.8-150100.3.28.1

    mod_auth_openidc is an OpenID Certified™ authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying Party functionality. In affected versions missing input validation on mod_auth_openidc_session_chunks cookie value makes the