Information on source package libapache2-mod-auth-openidc

Available versions

ReleaseVersion
buster2.3.10.2-1+deb10u1
bullseye2.4.9.4-0+deb11u1
bookworm2.4.12.2-1
sid2.4.12.2-1

Open issues

BugbusterbullseyebookwormsidDescription
CVE-2022-23527vulnerable (no DSA)vulnerable (no DSA)fixedfixedmod_auth_openidc is an OpenID Certified™ authentication and auth ...
CVE-2021-39191vulnerable (no DSA)fixedfixedfixedmod_auth_openidc is an authentication/authorization module for the Apa ...
CVE-2021-32792vulnerable (no DSA)fixedfixedfixedmod_auth_openidc is an authentication/authorization module for the Apa ...
CVE-2021-32791vulnerable (no DSA)fixedfixedfixedmod_auth_openidc is an authentication/authorization module for the Apa ...
CVE-2021-32786vulnerable (no DSA)fixedfixedfixedmod_auth_openidc is an authentication/authorization module for the Apa ...
CVE-2021-32785vulnerable (no DSA)fixedfixedfixedmod_auth_openidc is an authentication/authorization module for the Apa ...
CVE-2019-20479vulnerable (no DSA)fixedfixedfixedA flaw was found in mod_auth_openidc before version 2.4.1. An open red ...

Resolved issues

BugDescription
CVE-2021-20718mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a de ...
CVE-2019-1010247ZmartZone IAM mod_auth_openidc 2.3.10.1 and earlier is affected by: Cr ...
CVE-2019-14857A flaw was found in mod_auth_openidc before version 2.4.0.1. An open r ...
CVE-2017-6413The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka ...
CVE-2017-6062The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka ...
CVE-2017-6059Mod_auth_openidc.c in the Ping Identity OpenID Connect authentication ...

Security announcements

DSA / DLADescription
DLA-2298-1libapache2-mod-auth-openidc - security update
DLA-2130-1libapache2-mod-auth-openidc - security update
DLA-1996-1libapache2-mod-auth-openidc - security update
DLA-1894-1libapache2-mod-auth-openidc - security update

Search for package or bug name: Reporting problems