[ All 3 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z ]
×

Project mod_auth_openidc-2.4.16.11-1.el9

Name mod_auth_openidc
Epoch 0
Version 2.4.16.11
Release 1.el9
Website/URL https://github.com/OpenIDC/mod_auth_openidc
License ASL 2.0
Build Time 2025-10-23 19:31:39
Build Host builder-x86-06.inferitos.ru
Summary OpenID Connect auth module for Apache HTTP Server
Repositories AppStream
Description This module enables an Apache 2.x web server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server.
Errata
× Full screenshot
Packages link
Package Summary SHA-256 checksum
x86_64
mod_auth_openidc-2.4.16.11-1.el9.x86_64 OpenID Connect auth module for Apache HTTP Server 1eafa683ea0f8a2c04529c2913230cf47bf23c3aa8621b53bbe5b9a7d406996e download
aarch64
mod_auth_openidc-2.4.16.11-1.el9.aarch64 OpenID Connect auth module for Apache HTTP Server 137be3a43801576ab429614dcbc7f6e107ebcdcecab4cfc248abd08e84a8c20c download
src
mod_auth_openidc-2.4.16.11-1.el9.src OpenID Connect auth module for Apache HTTP Server efa47773e3961e6d53ea7428b2c9a3077151a528228027a6613b2ae356f94456 download
Changelog link 
* Tue Apr 08 2025 Tomas Halman <thalman@redhat.com> - 2.4.16.11-1
Rebase to version 2.4.16.11
- Resolves: RHEL-86221

* Mon Mar 31 2025 Tomas Halman <thalman@redhat.com> - 2.4.16.10-1
Rebase to version 2.4.16.10
- Resolves: RHEL-44894
- Resolves: RHEL-3335

* Fri Apr 12 2024 Tomas Halman <thalman@redhat.com> - 2.4.10-1
Rebase to 2.4.10 version improves `state cookies piling up` problem
  Resolves: RHEL-32450 Race condition in mod_auth_openidc filecache
  Resolves: RHEL-25422 mod_auth_openidc: DoS when using
            `OIDCSessionType client-cookie` and manipulating cookies
            (CVE-2024-24814)

* Fri Sep 22 2023 MSVSphere Packaging Team <packager@msvsphere-os.ru> - 2.4.9.4-4
- Rebuilt for MSVSphere 9.3 beta

* Mon Apr 24 2023 Tomas Halman <thalman@redhat.com> - 2.4.9.4-4
Resolves: rhbz#2189268 - auth_openidc.conf mode 0640 by default

* Tue Apr 11 2023 Tomas Halman <thalman@redhat.com> - 2.4.9.4-3
- Resolves: rhbz#2184145 - CVE-2023-28625 NULL pointer dereference
  when OIDCStripCookies is set and a crafted Cookie header is supplied