It was discovered that mod-auth-mellon incorrectly filtered certain URLs. A remote attacker could possibly use this issue to perform an open redirect attack.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "0.13.1-1ubuntu0.3", "binary_name": "libapache2-mod-auth-mellon" }, { "binary_version": "0.13.1-1ubuntu0.3", "binary_name": "libapache2-mod-auth-mellon-dbgsym" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "0.16.0-1ubuntu0.1", "binary_name": "libapache2-mod-auth-mellon" }, { "binary_version": "0.16.0-1ubuntu0.1", "binary_name": "libapache2-mod-auth-mellon-dbgsym" } ] }