File fix-CVE-2023-28625.patch of Package apache2-mod_auth_openidc.28532

Index: mod_auth_openidc-2.4.0/src/mod_auth_openidc.c
===================================================================
--- mod_auth_openidc-2.4.0.orig/src/mod_auth_openidc.c
+++ mod_auth_openidc-2.4.0/src/mod_auth_openidc.c
@@ -200,6 +200,9 @@ void oidc_strip_cookies(request_rec *r)
 			while (cookie != NULL && *cookie == OIDC_CHAR_SPACE)
 				cookie++;
 
+			if (cookie == NULL)
+				break;
+
 			for (i = 0; i < strip->nelts; i++) {
 				name = ((const char**) strip->elts)[i];
 				if ((strncmp(cookie, name, strlen(name)) == 0)

Places

File fix-CVE-2023-28625.patch of Package apache2-mod_auth_openidc.28532

Places