[Git][security-tracker-team/security-tracker][master] Add CVE-2024-24814/libapache2-mod-auth-openidc
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Feb 13 20:46:49 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
262c69e3 by Salvatore Bonaccorso at 2024-02-13T21:45:59+01:00
Add CVE-2024-24814/libapache2-mod-auth-openidc
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13,7 +13,9 @@ CVE-2024-24921 (A vulnerability has been identified in Simcenter Femap (All vers
CVE-2024-24920 (A vulnerability has been identified in Simcenter Femap (All versions < ...)
NOT-FOR-US: Siemens
CVE-2024-24814 (mod_auth_openidc is an OpenID Certified\u2122 authentication and autho ...)
- TODO: check
+ - libapache2-mod-auth-openidc <unfixed>
+ NOTE: https://github.com/OpenIDC/mod_auth_openidc/security/advisories/GHSA-hxr6-w4gc-7vvv
+ NOTE: https://github.com/OpenIDC/mod_auth_openidc/commit/4022c12f314bd89d127d1be008b1a80a08e1203d (v2.4.15.2)
CVE-2024-24782 (An unauthenticated attacker can send a ping request from one network t ...)
TODO: check
CVE-2024-24781 (An unauthenticated remote attacker can use an uncontrolled resource co ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/262c69e37776e03540fd3ca0a0eb90329be462c7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/262c69e37776e03540fd3ca0a0eb90329be462c7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240213/7e60be0e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list