RHSA-2025:10004

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2025:10004

Import Source

https://security.access.redhat.com/data/osv/RHSA-2025:10004.json

JSON Data

https://api.test.osv.dev/v1/vulns/RHSA-2025:10004

Upstream

CVE-2025-3891

Published

2025-07-01T10:04:15Z

Modified

2025-07-01T16:46:45.470652Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Red Hat Security Advisory: mod_auth_openidc:2.3 security update

Details

References

Affected packages

Red Hat:rhel_aus:8.4::appstream / cjose

Package

Name: cjose
Purl: pkg:rpm/redhat/cjose

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.6.1-3.module+el8.4.0+19462+14bde120

Red Hat:rhel_aus:8.4::appstream / cjose-debuginfo

Package

Name: cjose-debuginfo
Purl: pkg:rpm/redhat/cjose-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.6.1-3.module+el8.4.0+19462+14bde120

Red Hat:rhel_aus:8.4::appstream / cjose-debugsource

Package

Name: cjose-debugsource
Purl: pkg:rpm/redhat/cjose-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.6.1-3.module+el8.4.0+19462+14bde120

Red Hat:rhel_aus:8.4::appstream / cjose-devel

Package

Name: cjose-devel
Purl: pkg:rpm/redhat/cjose-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.6.1-3.module+el8.4.0+19462+14bde120

Red Hat:rhel_aus:8.4::appstream / mod_auth_openidc

Package

Name: mod_auth_openidc
Purl: pkg:rpm/redhat/mod_auth_openidc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.4.9.4-1.module+el8.4.0+23303+cbb1cd49.2

Red Hat:rhel_aus:8.4::appstream / mod_auth_openidc-debuginfo

Package

Name: mod_auth_openidc-debuginfo
Purl: pkg:rpm/redhat/mod_auth_openidc-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.4.9.4-1.module+el8.4.0+23303+cbb1cd49.2

Red Hat:rhel_aus:8.4::appstream / mod_auth_openidc-debugsource

Package

Name: mod_auth_openidc-debugsource
Purl: pkg:rpm/redhat/mod_auth_openidc-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:2.4.9.4-1.module+el8.4.0+23303+cbb1cd49.2