Red Hat: CVE-2023-28625: mod_auth_openidc: NULL pointer dereference when OIDCStripCookies is set and a crafted Cookie header is supplied (Multiple Advisories)

Red Hat: CVE-2023-28625: mod_auth_openidc: NULL pointer dereference when OIDCStripCookies is set and a crafted Cookie header is supplied (Multiple Advisories)

Severity

8

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

04/03/2023

Created

11/09/2023

Added

11/08/2023

Modified

01/28/2025

Description

mod_auth_openidc is an authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying Party functionality. In versions 2.0.0 through 2.4.13.1, when `OIDCStripCookies` is set and a crafted cookie supplied, a NULL pointer dereference would occur, resulting in a segmentation fault. This could be used in a Denial-of-Service attack and thus presents an availability risk. Version 2.4.13.2 contains a patch for this issue. As a workaround, avoid using `OIDCStripCookies`.

Solution(s)

• redhat-upgrade-cjose
• redhat-upgrade-cjose-debuginfo
• redhat-upgrade-cjose-debugsource
• redhat-upgrade-cjose-devel
• redhat-upgrade-mod_auth_openidc
• redhat-upgrade-mod_auth_openidc-debuginfo
• redhat-upgrade-mod_auth_openidc-debugsource

References

• CVE-2023-28625
• RHSA-2023:6365
• RHSA-2023:6940