rpms/mod_auth_mellon
5
0
Fork 0
Code Issues Pull Requests Releases Activity

New upstream version 0.18.0

Browse Source 
Resolves: rhbz#1988235 CVE-2021-3639 mod_auth_mellon: Open Redirect
          vulnerability in logout URLs
Resolves: rhbz#1988664 mod_auth_mellon-0.18.0 is available
This commit is contained in:
Tomas Halman 2021-12-17 18:30:03 +01:00
parent cb20544e38
commit 4901068138
4 changed files with 5901 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored
View File

@ -10,3 +10,4 @@
/mod_auth_mellon-0.15.0.tar.gz /mod_auth_mellon-0.15.0.tar.gz
/mod_auth_mellon-0.16.0.tar.gz /mod_auth_mellon-0.16.0.tar.gz
/mod_auth_mellon-0.17.0.tar.gz /mod_auth_mellon-0.17.0.tar.gz
/v0.18.0.tar.gz

5884
0000-configure.patch Normal file
View File

File diff suppressed because it is too large Load Diff

17
mod_auth_mellon.spec
View File

@ -1,13 +1,14 @@
Summary: A SAML 2.0 authentication module for the Apache Httpd Server Summary: A SAML 2.0 authentication module for the Apache Httpd Server
Name: mod_auth_mellon Name: mod_auth_mellon
Version: 0.17.0 Version: 0.18.0
Release: 4%{?dist} Release: 1%{?dist}
Source0: https://github.com/latchset/mod_auth_mellon/releases/download/v0.17.0/mod_auth_mellon-0.17.0.tar.gz Source0: https://github.com/latchset/mod_auth_mellon/archive/refs/tags/v0.18.0.tar.gz
Source1: auth_mellon.conf Source1: auth_mellon.conf
Source2: 10-auth_mellon.conf Source2: 10-auth_mellon.conf
Source3: mod_auth_mellon.conf Source3: mod_auth_mellon.conf
Source4: mellon_create_metadata.sh Source4: mellon_create_metadata.sh
Source5: README.redhat.rst Source5: README.redhat.rst
Patch0: 0000-configure.patch
License: GPLv2+ License: GPLv2+
BuildRequires: make BuildRequires: make
BuildRequires: gcc BuildRequires: gcc
@ -17,7 +18,9 @@ BuildRequires: httpd-devel
BuildRequires: lasso-devel >= 2.5.1-13 BuildRequires: lasso-devel >= 2.5.1-13
BuildRequires: openssl-devel BuildRequires: openssl-devel
BuildRequires: xmlsec1-devel BuildRequires: xmlsec1-devel
BuildRequires: xmlsec1-openssl-devel
BuildRequires: rubygem-asciidoctor BuildRequires: rubygem-asciidoctor
BuildRequires: libtool-ltdl-devel
Requires: httpd-mmn = %{_httpd_mmn} Requires: httpd-mmn = %{_httpd_mmn}
Requires: lasso >= 2.5.1-13 Requires: lasso >= 2.5.1-13
Url: https://github.com/latchset/mod_auth_mellon Url: https://github.com/latchset/mod_auth_mellon
@ -30,6 +33,8 @@ received in assertions generated by a IdP server.
%prep %prep
%setup -q -n %{name}-%{version} %setup -q -n %{name}-%{version}
%patch0 -p1
chmod +x configure
%build %build
export APXS=%{_httpd_apxs} export APXS=%{_httpd_apxs}
@ -102,6 +107,12 @@ in the doc directory for instructions on using the diagnostics build.
%dir /run/%{name}/ %dir /run/%{name}/
%changelog %changelog
* Fri Dec 17 2021 Tomas Halman <thalman@redhat.com> - 0.18.0-1
- New upstream version 0.18.0
- Resolves: rhbz#1988235 CVE-2021-3639 mod_auth_mellon: Open Redirect
vulnerability in logout URLs
- Resolves: rhbz#1988664 mod_auth_mellon-0.18.0 is available
* Tue Sep 14 2021 Sahana Prasad <sahana@redhat.com> - 0.17.0-4 * Tue Sep 14 2021 Sahana Prasad <sahana@redhat.com> - 0.17.0-4
- Rebuilt with OpenSSL 3.0.0 - Rebuilt with OpenSSL 3.0.0

2
sources
View File

@ -1 +1 @@
SHA512 (mod_auth_mellon-0.17.0.tar.gz) = 93919b46e5966d16b334f8f633345d8566f6873a68d1e619835a52a12a70fa7068fe036c69a43ca7b46e51b4c49354d51df13ffd64c60b82747eec86fe357d2e SHA512 (v0.18.0.tar.gz) = 477ac302fda9ed33b2ca51e88379250a41cc85111e71cacc8ba9f16cd8a2b63af6393fb038fc8f5c211b97926ef368c5989c92570c2e3c9eae072c7b4d32d7d5