Пакет mod_auth_openidc-2.4.10-1.el9.aarch64
| Имя | mod_auth_openidc |
|---|---|
| Эпоха | 0 |
| Версия | 2.4.10 |
| Релиз | 1.el9 |
| Архитектура | aarch64 |
| Сайт | https://github.com/OpenIDC/mod_auth_openidc |
| Лицензия | ASL 2.0 |
| Время сборки | 2024-10-29 19:39:57 |
| Хост сборки | builder-arm64-1.inferitos.ru |
| Краткое описание | OpenID Connect auth module for Apache HTTP Server |
| Репозитории | AppStream |
| Полное описание | This module enables an Apache 2.x web server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server. |
| Эррата | INFSA-2024:9180 |
| Размер | 190 КиБ |
| Исходный проект | mod_auth_openidc-2.4.10-1.el9 |
| Контрольная сумма SHA-256 | 5a120784bb5105a259e60cfda01c0c2fc1fe4c1f4b2163113ff3cd313d23cc2b |
×
![Full screenshot]()
* Fri Apr 12 2024 Tomas Halman <thalman@redhat.com> - 2.4.10-1
Rebase to 2.4.10 version improves `state cookies piling up` problem
Resolves: RHEL-32450 Race condition in mod_auth_openidc filecache
Resolves: RHEL-25422 mod_auth_openidc: DoS when using
`OIDCSessionType client-cookie` and manipulating cookies
(CVE-2024-24814)
* Fri Sep 22 2023 MSVSphere Packaging Team <packager@msvsphere-os.ru> - 2.4.9.4-4
- Rebuilt for MSVSphere 9.3 beta
* Mon Apr 24 2023 Tomas Halman <thalman@redhat.com> - 2.4.9.4-4
Resolves: rhbz#2189268 - auth_openidc.conf mode 0640 by default
* Tue Apr 11 2023 Tomas Halman <thalman@redhat.com> - 2.4.9.4-3
- Resolves: rhbz#2184145 - CVE-2023-28625 NULL pointer dereference
when OIDCStripCookies is set and a crafted Cookie header is supplied
* Tue Feb 21 2023 Tomas Halman <thalman@redhat.com> - 2.4.9.4-2
- Resolves: rhbz#2153656 - CVE-2022-23527 - Open Redirect in
oidc_validate_redirect_url() using tab character