Overview

File _patchinfo of Package patchinfo.23743

<patchinfo incident="23743">
  <issue tracker="cve" id="2021-39191"/>
  <issue tracker="bnc" id="1190223">VUL-0: CVE-2021-39191: apache2-mod_auth_openidc: open redirect issue in target_link_uri parameter</issue>
  <issue tracker="cve" id="2022-23527"/>
  <issue tracker="bnc" id="1206441">VUL-0: CVE-2022-23527: apache2-mod_auth_openidc: Open Redirect in oidc_validate_redirect_url() using tab character</issue>
  <issue tracker="bnc" id="1199868">apache2 server module - /etc/apache2/sysconfig.d/loadmodule.conf: Cannot load /usr/lib64/apache2/mod_auth_openidc</issue>
  <packager>dspinella</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for apache2-mod_auth_openidc</summary>
  <description>This update for apache2-mod_auth_openidc fixes the following issues:

- CVE-2022-23527: Fixed open redirect in oidc_validate_redirect_url() using tab character (bsc#1206441).
- CVE-2021-39191: Fixed open redirect issue in target_link_uri parameter (bsc#1190223).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places