ELSA-2019-2112 - mod_auth_openidc security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2019-08-13 |
Description
[1.8.8-5]
- Resolves: rhbz#1626297 - CVE-2017-6413 mod_auth_openidc: OIDC_CLAIM and
OIDCAuthNHeader not skipped in an 'AuthType oauth20'
configuration [rhel-7]
[1.8.8-4]
- Resolves: rhbz#1626299 - CVE-2017-6059 mod_auth_openidc: Shows
user-supplied content on error pages [rhel-7]
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 7 (aarch64) | mod_auth_openidc-1.8.8-5.el7.src.rpm | 593facb61e136acb7f57a131114ef442 | ELBA-2020-5035 |
| mod_auth_openidc-1.8.8-5.el7.aarch64.rpm | 41db6c238e6f204d45bcee8ec8515405 | ELBA-2020-5035 |
|
| Oracle Linux 7 (x86_64) | mod_auth_openidc-1.8.8-5.el7.src.rpm | 593facb61e136acb7f57a131114ef442 | ELBA-2020-5035 |
| mod_auth_openidc-1.8.8-5.el7.x86_64.rpm | ef802c34d9d8a4510c2f327846ce88e5 | ELBA-2020-5035 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
