| Release | Version |
|---|---|
| jessie | 1.6.0-1 |
| jessie (security) | 1.6.0-1+deb8u1 |
| stretch | 2.1.6-1 |
| buster | 2.3.10.2-1 |
| bullseye | 2.4.0.3-1 |
| sid | 2.4.0.3-1 |
| Bug | jessie | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2019-14857 | vulnerable | vulnerable | vulnerable | fixed | fixed | |
| CVE-2019-1010247 | fixed | vulnerable | fixed | fixed | fixed | ZmartZone IAM mod_auth_openidc 2.3.10.1 and earlier is affected by: Cr ... |
| CVE-2017-6413 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka ... |
| CVE-2017-6059 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | Mod_auth_openidc.c in the Ping Identity OpenID Connect authentication ... |
| Bug | Description |
|---|---|
| CVE-2017-6062 | The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka ... |
| DSA / DLA | Description |
|---|---|
| DLA-1894-1 | libapache2-mod-auth-openidc - security update |