Information on source package libapache2-mod-auth-mellon

Available versions

ReleaseVersion
bullseye0.17.0-1+deb11u1
bookworm0.18.1-1
trixie0.19.1-1
sid0.19.1-1

Resolved issues

BugDescription
CVE-2021-3639A flaw was found in mod_auth_mellon where it does not sanitize logout ...
CVE-2019-13038mod_auth_mellon through 0.14.2 has an Open Redirect via the login?Retu ...
CVE-2019-3878A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache ...
CVE-2019-3877A vulnerability was found in mod_auth_mellon before v0.14.2. An open r ...
CVE-2017-6807mod_auth_mellon before 0.13.1 is vulnerable to a Cross-Site Session Tr ...
CVE-2016-2146The am_read_post_data function in mod_auth_mellon before 0.11.1 does n ...
CVE-2016-2145The am_read_post_data function in mod_auth_mellon before 0.11.1 does n ...
CVE-2014-8567The mod_auth_mellon module before 0.8.1 allows remote attackers to cau ...
CVE-2014-8566The mod_auth_mellon module before 0.8.1 allows remote attackers to obt ...

Security announcements

DSA / DLADescription
DLA-3359-1libapache2-mod-auth-mellon - security update
DSA-4414-1libapache2-mod-auth-mellon - security update

Search for package or bug name: Reporting problems