VYPR

rpm package

suse/apache2-mod_auth_openidc&distro=SUSE Linux Enterprise Server 12 SP4

pkg:rpm/suse/apache2-mod_auth_openidc&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Vulnerabilities (2)

  • CVE-2019-20479MedFeb 20, 2020
    affected < 2.4.0-3.11.1fixed 2.4.0-3.11.1

    A flaw was found in mod_auth_openidc before version 2.4.1. An open redirect issue exists in URLs with a slash and backslash at the beginning.

  • CVE-2019-14857MedNov 26, 2019
    affected < 2.4.0-3.7.1fixed 2.4.0-3.7.1

    A flaw was found in mod_auth_openidc before version 2.4.0.1. An open redirect issue exists in URLs with trailing slashes similar to CVE-2019-3877 in mod_auth_mellon.