modules/mod_auth_openidc
4
0
Fork 0
Code Issues Pull Requests Releases Activity
7 Commits 6 Branches 13 Tags 40 KiB
286bad58f0
Commit Graph

7 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tomas Halman
286bad58f0 The access mode and ownership of auth_openidc.conf 
Resolves: rhbz#2141850 - auth_openidc.conf mode 0640 by default
          rhbz#2072469 - Random memory overwrite
          rhbz#2153659 - CVE-2022-23527 Open Redirect in oidc_validate_redirect_url() using tab character
          rhbz#2184144 - CVE-2023-28625 NULL pointer dereference when OIDCStripCookies is set and a crafted
                         Cookie header is supplied
 2023-04-25 12:04:08 +02:00
Tomas Halman
60fa81c01d The access mode and ownership of auth_openidc.conf 
Resolves: rhbz#2141850 - auth_openidc.conf mode 0640 by default
 2023-04-24 22:47:37 +02:00
Tomas Halman
b1c7fff203 mod_auth_openidc: NULL pointer dereference 
Resolves: rhbz#2184144 CVE-2023-28625 - mod_auth_openidc: NULL pointer dereference
    when OIDCStripCookies is set and a crafted Cookie header is supplied
 2023-04-12 13:44:29 +02:00
Tomas Halman
e46cb2540f Merge branch 'update-8.9.0' into 'stream-mod_auth_openidc-2.3-rhel-8.9.0' 
mod_auth_openidc update

See merge request redhat/centos-stream/modules/mod_auth_openidc!1
 2023-03-17 15:06:44 +00:00
Tomas Halman
e6cc8faf14 mod_auth_openidc update 
Resolves: rhbz#2072469 - cjose random memory override
Resolves: rhbz#2153659 - CVE-2022-23527 Open Redirect in oidc_validate_redirect_url()
          using tab character
 2023-03-17 15:43:58 +01:00
Adam Samalik
4466857bfd update refs 2023-02-23 11:47:59 +00:00
Adam Samalik
a80ce31501 update modulemd etc 2023-02-23 11:47:59 +00:00