ELSA-2025-7419 - mod_auth_openidc security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2025-05-21 |
Description
[2.4.10-1.el9_6.1]
Resolves: RHEL-86224 - mod_auth_openidc allows OIDCProviderAuthRequestMethod
POSTs to leak protected data (CVE-2025-31492)
Related CVEs
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
|
| Oracle Linux 9 (aarch64) | mod_auth_openidc-2.4.10-1.el9_6.1.src.rpm | 49f37f2feb584ad9ceb43c76d9c1ff4c86e5838e5dbedd65bd28ce3a417a0a43 | - | ol9_aarch64_appstream |
| mod_auth_openidc-2.4.10-1.el9_6.1.aarch64.rpm | 5ad885dd99e7c99efd9522ad95a4c5e98803986b161fb9a1d4c487116e480b63 | - | ol9_aarch64_appstream |
|
| Oracle Linux 9 (x86_64) | mod_auth_openidc-2.4.10-1.el9_6.1.src.rpm | 49f37f2feb584ad9ceb43c76d9c1ff4c86e5838e5dbedd65bd28ce3a417a0a43 | - | ol9_x86_64_appstream |
| mod_auth_openidc-2.4.10-1.el9_6.1.x86_64.rpm | c31b42ec5523e6ea233f06db18cba7ebec76a961015b1e2976e8666ab5037010 | - | ol9_x86_64_appstream |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
