stable
FEDORA-2021-c5e5c926ec created by jhrozek 11 months ago for Fedora 35

Automatic update for mod_auth_openidc-2.4.9-1.fc35.

Changelog
* Fri Jul 30 2021 Jakub Hrozek <jhrozek@redhat.com> - 2.4.9-1
- Resolves: rhbz#1985153 - mod_auth_openidc-2.4.9 is available
- Resolves: rhbz#1986103 - CVE-2021-32786 mod_auth_openidc: open redirect
                           in oidc_validate_redirect_url()
- Resolves: rhbz#1986396 - CVE-2021-32791 mod_auth_openidc: hardcoded
                           static IV and AAD with a reused key in AES GCM
                           encryption
- Resolves: rhbz#1986398 - CVE-2021-32792 mod_auth_openidc: XSS when using
                           OIDCPreservePost On

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2021-c5e5c926ec

This update was automatically created

11 months ago

This update's test gating status has been changed to 'waiting'.

11 months ago

This update's test gating status has been changed to 'ignored'.

11 months ago

This update has been submitted for stable by bodhi

11 months ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
0 days
Dates
submitted
11 months ago
in testing
11 months ago
in stable
11 months ago
BZ#1985153 mod_auth_openidc-2.4.9 is available
0
0
BZ#1986103 CVE-2021-32786 mod_auth_openidc: open redirect in oidc_validate_redirect_url() [fedora-all]
0
0
BZ#1986396 CVE-2021-32791 mod_auth_openidc: hardcoded static IV and AAD with a reused key in AES GCM encryption [fedora-all]
0
0
BZ#1986398 CVE-2021-32792 mod_auth_openidc: XSS when using OIDCPreservePost On [fedora-all]
0
0

Automated Test Results