RHSA-2025:4228
- Source
- https://access.redhat.com/errata/RHSA-2025:4228
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2025:4228.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/RHSA-2025:4228
- Upstream
- Published
- 2025-04-28T10:03:39Z
- Modified
- 2025-09-13T10:12:50Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- Red Hat Security Advisory: mod_auth_openidc:2.3 security update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2025:4228
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2357738
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_4228.json
- https://access.redhat.com/security/cve/CVE-2025-31492
- https://www.cve.org/CVERecord?id=CVE-2025-31492
- https://nvd.nist.gov/vuln/detail/CVE-2025-31492
- https://github.com/OpenIDC/mod_auth_openidc/commit/b59b8ad63411857090ba1088e23fe414c690c127
- https://github.com/OpenIDC/mod_auth_openidc/security/advisories/GHSA-59jp-rwph-878r
Affected packages
Red Hat:rhel_aus:8.2::appstream / cjose-0.6.1
Package
- Name
- cjose-0.6.1
- Purl
- pkg:rpm/redhat/cjose
Red Hat:rhel_aus:8.2::appstream / cjose-debuginfo-0.6.1
Package
- Name
- cjose-debuginfo-0.6.1
- Purl
- pkg:rpm/redhat/cjose-debuginfo
Red Hat:rhel_aus:8.2::appstream / cjose-debugsource-0.6.1
Package
- Name
- cjose-debugsource-0.6.1
- Purl
- pkg:rpm/redhat/cjose-debugsource
Red Hat:rhel_aus:8.2::appstream / cjose-devel-0.6.1
Package
- Name
- cjose-devel-0.6.1
- Purl
- pkg:rpm/redhat/cjose-devel
Red Hat:rhel_aus:8.2::appstream / mod_auth_openidc-2.4.9.4
Package
- Name
- mod_auth_openidc-2.4.9.4
- Purl
- pkg:rpm/redhat/mod_auth_openidc
Red Hat:rhel_aus:8.2::appstream / mod_auth_openidc-debuginfo-2.4.9.4
Package
- Name
- mod_auth_openidc-debuginfo-2.4.9.4
- Purl
- pkg:rpm/redhat/mod_auth_openidc-debuginfo