A flaw was found in the mod_auth_openidc module for Apache httpd. This flaw allows a remote, unauthenticated attacker to trigger a denial of service by sending an empty POST request when the OIDCPreservePost directive is enabled. The server crashes consistently, affecting availability.

A flaw was found in the mod_auth_openidc module for Apache httpd. This flaw allows a remote, unauthenticated attacker to trigger a denial of service by sending an empty POST request when the OIDCPreservePost directive is enabled. The server crashes consistently, affecting availability.

A flaw was found in the mod_auth_openidc module for Apache httpd. This flaw allows a remote, unauthenticated attacker to trigger a denial of service by sending an empty POST request when the OIDCPreservePost directive is enabled. The server crashes consistently, affecting availability.

A flaw was found in the mod_auth_openidc module for Apache httpd. This ...

Security update for apache2-mod_auth_openidc

Security update for apache2-mod_auth_openidc

Security update for apache2-mod_auth_openidc

Уязвимость mod_auth_openidc

Important: mod_auth_openidc security update

Moderate: mod_auth_openidc:2.3 security update

A flaw was found in the mod_auth_openidc module for Apache httpd. This flaw allows a remote, unauthenticated attacker to trigger a denial of service by sending an empty POST request when the OIDCPreservePost directive is enabled. The server crashes consistently, affecting availability.

ELSA-2025-9396: mod_auth_openidc security update (IMPORTANT)

ELSA-2025-4597: mod_auth_openidc:2.3 security update (MODERATE)

Уязвимость модуля аутентификации и авторизации для Apache 2.x HTTP server Mod_auth_openidc, позволяющая нарушителю вызвать отказ в обслуживании

Security update for apache2-mod_auth_openidc