Updated apache-mod_auth_openidc packages fix security vulnerability

🗓️ 02 Oct 2021 18:57:04Reported by Gentoo FoundationType

Updated apache-mod_auth_openidc packages fix security vulnerability related to Open Redirect, AES GCM encryption, and XS

Reporter	Title	Published	Views	Family All 134
Tenable Nessus	Alibaba Cloud Linux 3 : 0135: mod_auth_openidc:2.3 (ALINUX3-SA-2022:0135)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : mod_auth_openidc:2.3 (ALSA-2022:1823)	12 May 202200:00	–	nessus
Tenable Nessus	CentOS 8 : mod_auth_openidc:2.3 (CESA-2022:1823)	10 May 202200:00	–	nessus
Tenable Nessus	CentOS 9 : mod_auth_openidc-2.4.9.1-1.el9	29 Feb 202400:00	–	nessus
Tenable Nessus	Debian dla-3409 : libapache2-mod-auth-openidc - security update	1 May 202300:00	–	nessus
Tenable Nessus	Fedora 39 : mod_auth_openidc (2023-02c84fe305)	7 Nov 202300:00	–	nessus
Tenable Nessus	MiracleLinux 8 : mod_auth_openidc:2.3 (AXSA:2022-3591:01)	20 Jan 202600:00	–	nessus
Tenable Nessus	openSUSE 15 Security Update : apache2-mod_auth_openidc (openSUSE-SU-2021:1277-1)	17 Sep 202100:00	–	nessus
Tenable Nessus	openSUSE 15 Security Update : apache2-mod_auth_openidc (openSUSE-SU-2021:3020-1)	14 Sep 202100:00	–	nessus
Tenable Nessus	Oracle Linux 8 : mod_auth_openidc:2.3 (ELSA-2022-1823)	18 May 202200:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	8	any	apache-mod_auth_openidc	2.4.9.4-1	apache-mod_auth_openidc-2.4.9.4-1.noarch.rpm

Source	Link
bugs	www.bugs.mageia.org/show_bug.cgi
lists	www.lists.fedoraproject.org/archives/list/[email protected]/thread/FZVF6BSJLRQZ7PFFR4X5JSU6KUJYNOCU/
lists	www.lists.suse.com/pipermail/sle-security-updates/2021-September/009431.html
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/54B4RYNP5L63X2FMX2QCVYB2LGLL42IY/

02 Oct 2021 18:57Current

2.6Low risk

Vulners AI Score2.6

CVSS 25.8

CVSS 3.15.9 - 7.5

EPSS0.02731