Release | Version |
---|---|
buster | 2.3.10.2-1+deb10u1 |
bullseye | 2.4.9.4-0+deb11u1 |
bookworm | 2.4.12.2-1 |
sid | 2.4.12.2-1 |
Bug | buster | bullseye | bookworm | sid | Description |
---|---|---|---|---|---|
CVE-2022-23527 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | mod_auth_openidc is an OpenID Certified™ authentication and auth ... |
CVE-2021-39191 | vulnerable (no DSA) | fixed | fixed | fixed | mod_auth_openidc is an authentication/authorization module for the Apa ... |
CVE-2021-32792 | vulnerable (no DSA) | fixed | fixed | fixed | mod_auth_openidc is an authentication/authorization module for the Apa ... |
CVE-2021-32791 | vulnerable (no DSA) | fixed | fixed | fixed | mod_auth_openidc is an authentication/authorization module for the Apa ... |
CVE-2021-32786 | vulnerable (no DSA) | fixed | fixed | fixed | mod_auth_openidc is an authentication/authorization module for the Apa ... |
CVE-2021-32785 | vulnerable (no DSA) | fixed | fixed | fixed | mod_auth_openidc is an authentication/authorization module for the Apa ... |
CVE-2019-20479 | vulnerable (no DSA) | fixed | fixed | fixed | A flaw was found in mod_auth_openidc before version 2.4.1. An open red ... |
Bug | Description |
---|---|
CVE-2021-20718 | mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a de ... |
CVE-2019-1010247 | ZmartZone IAM mod_auth_openidc 2.3.10.1 and earlier is affected by: Cr ... |
CVE-2019-14857 | A flaw was found in mod_auth_openidc before version 2.4.0.1. An open r ... |
CVE-2017-6413 | The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka ... |
CVE-2017-6062 | The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka ... |
CVE-2017-6059 | Mod_auth_openidc.c in the Ping Identity OpenID Connect authentication ... |
DSA / DLA | Description |
---|---|
DLA-2298-1 | libapache2-mod-auth-openidc - security update |
DLA-2130-1 | libapache2-mod-auth-openidc - security update |
DLA-1996-1 | libapache2-mod-auth-openidc - security update |
DLA-1894-1 | libapache2-mod-auth-openidc - security update |