RHSA-2025:4128
- Source
- https://access.redhat.com/errata/RHSA-2025:4128
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2025:4128.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2025:4128
- Published
- 2025-04-24T10:03:54Z
- Modified
- 2025-04-28T10:03:36Z
- Upstream
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- Red Hat Security Advisory: mod_auth_openidc:2.3 security update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2025:4128
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2357738
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_4128.json
- https://access.redhat.com/security/cve/CVE-2025-31492
- https://www.cve.org/CVERecord?id=CVE-2025-31492
- https://nvd.nist.gov/vuln/detail/CVE-2025-31492
- https://github.com/OpenIDC/mod_auth_openidc/commit/b59b8ad63411857090ba1088e23fe414c690c127
- https://github.com/OpenIDC/mod_auth_openidc/security/advisories/GHSA-59jp-rwph-878r
Affected packages
Red Hat:rhel_eus:8.8::appstream / cjose
Package
- Name
- cjose
- Purl
- pkg:rpm/redhat/cjose
Red Hat:rhel_eus:8.8::appstream / cjose-debuginfo
Package
- Name
- cjose-debuginfo
- Purl
- pkg:rpm/redhat/cjose-debuginfo
Red Hat:rhel_eus:8.8::appstream / cjose-debugsource
Package
- Name
- cjose-debugsource
- Purl
- pkg:rpm/redhat/cjose-debugsource
Red Hat:rhel_eus:8.8::appstream / cjose-devel
Package
- Name
- cjose-devel
- Purl
- pkg:rpm/redhat/cjose-devel
Red Hat:rhel_eus:8.8::appstream / mod_auth_openidc
Package
- Name
- mod_auth_openidc
- Purl
- pkg:rpm/redhat/mod_auth_openidc
Red Hat:rhel_eus:8.8::appstream / mod_auth_openidc-debuginfo
Package
- Name
- mod_auth_openidc-debuginfo
- Purl
- pkg:rpm/redhat/mod_auth_openidc-debuginfo