Red Hat Product Errata RHBA-2020:5035 - Bug Fix Advisory
Issued:
2020-11-10
Updated:
2020-11-10

RHBA-2020:5035 - Bug Fix Advisory

Synopsis

mod_auth_openidc security update

Type/Severity

Bug Fix Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for mod_auth_openidc is now available for Red Hat Enterprise Linux 7.

Description

The mod_auth_openidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server.

Big Fix(es) and Enhancement(s):

  • Backport SameSite=None cookie from mod_auth_openidc upstream to support latest browsers. (BZ#1823762)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server 7 x86_64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support 7 x86_64
  • Red Hat Enterprise Linux Workstation 7 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 7 s390x
  • Red Hat Enterprise Linux for Power, big endian 7 ppc64
  • Red Hat Enterprise Linux for Power, little endian 7 ppc64le
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7 s390x
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7 ppc64
  • Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7 ppc64le

Fixes

  • BZ - 1823762 - Backport SameSite=None cookie from mod_auth_openidc upstream to support latest browsers [rhel-7.9.z]

CVEs

(none)

References

(none)

Red Hat Enterprise Linux Server 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
x86_64
mod_auth_openidc-1.8.8-9.el7_9.x86_64.rpm SHA-256: 7f1624f2b128b42dfaf1c242e4b5f60550eb5096d652c13bfaa20059311b097e
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.x86_64.rpm SHA-256: 0e3051284a5c6a0358bb4b7a1bcd0eac41070d2c3c13d084f9d9cb8e1bafac8d

Red Hat Enterprise Linux Server - Extended Life Cycle Support 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
x86_64
mod_auth_openidc-1.8.8-9.el7_9.x86_64.rpm SHA-256: 7f1624f2b128b42dfaf1c242e4b5f60550eb5096d652c13bfaa20059311b097e
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.x86_64.rpm SHA-256: 0e3051284a5c6a0358bb4b7a1bcd0eac41070d2c3c13d084f9d9cb8e1bafac8d

Red Hat Enterprise Linux Workstation 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
x86_64
mod_auth_openidc-1.8.8-9.el7_9.x86_64.rpm SHA-256: 7f1624f2b128b42dfaf1c242e4b5f60550eb5096d652c13bfaa20059311b097e
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.x86_64.rpm SHA-256: 0e3051284a5c6a0358bb4b7a1bcd0eac41070d2c3c13d084f9d9cb8e1bafac8d

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
s390x
mod_auth_openidc-1.8.8-9.el7_9.s390x.rpm SHA-256: 8a6dbbb2a638474d102e8c1958d4d3ad54f6a510d4b176dee1cb71c1bc08a9fc
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.s390x.rpm SHA-256: 2166974094d396d28340c265f65601e8a61182b09ded464618477fce663b6246

Red Hat Enterprise Linux for Power, big endian 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
ppc64
mod_auth_openidc-1.8.8-9.el7_9.ppc64.rpm SHA-256: 607ae3da26f60065c1d87709f98ff649bb0b3cce5577c475ef21e44440926f35
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.ppc64.rpm SHA-256: 75453db66b1a4adced73e85137cfdb6bca3dc29483711f6d350a43e438bcb102

Red Hat Enterprise Linux for Power, little endian 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
ppc64le
mod_auth_openidc-1.8.8-9.el7_9.ppc64le.rpm SHA-256: 44ace73873f879d313575b76f70e2a5d4c1898094165a5995e0e7a87511f5d7f
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.ppc64le.rpm SHA-256: a52958dc69c45649e72c7ec5cbad534cbcb573cf56130ab67606f35f41f207c0

Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
s390x
mod_auth_openidc-1.8.8-9.el7_9.s390x.rpm SHA-256: 8a6dbbb2a638474d102e8c1958d4d3ad54f6a510d4b176dee1cb71c1bc08a9fc
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.s390x.rpm SHA-256: 2166974094d396d28340c265f65601e8a61182b09ded464618477fce663b6246

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, big endian 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
ppc64
mod_auth_openidc-1.8.8-9.el7_9.ppc64.rpm SHA-256: 607ae3da26f60065c1d87709f98ff649bb0b3cce5577c475ef21e44440926f35
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.ppc64.rpm SHA-256: 75453db66b1a4adced73e85137cfdb6bca3dc29483711f6d350a43e438bcb102

Red Hat Enterprise Linux Server - Extended Life Cycle Support for IBM Power, little endian 7

SRPM
mod_auth_openidc-1.8.8-9.el7_9.src.rpm SHA-256: ab7daf6d9dd2e38ed43990e8da6a340d505235e6975817ceda1270e661beb0db
ppc64le
mod_auth_openidc-1.8.8-9.el7_9.ppc64le.rpm SHA-256: 44ace73873f879d313575b76f70e2a5d4c1898094165a5995e0e7a87511f5d7f
mod_auth_openidc-debuginfo-1.8.8-9.el7_9.ppc64le.rpm SHA-256: a52958dc69c45649e72c7ec5cbad534cbcb573cf56130ab67606f35f41f207c0

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.