[ol8_appstream] mod_auth_mellon-0.14.0-12.el8.aarch64

Name:	mod_auth_mellon
Version:	0.14.0
Release:	12.el8
Architecture:	aarch64
Group:	System Environment/Daemons
Size:	2506977
License:	GPLv2+
RPM:	mod_auth_mellon-0.14.0-12.el8.aarch64.rpm
Source RPM:	mod_auth_mellon-0.14.0-12.el8.src.rpm
Build Date:	Wed Apr 07 2021
Build Host:	ca-buildarm05
Vendor:	Oracle America
URL:	https://github.com/UNINETT/mod_auth_mellon
Summary:	A SAML 2.0 authentication module for the Apache Httpd Server
Description:	The mod_auth_mellon module is an authentication service that implements the SAML 2.0 federation protocol. It grants access based on the attributes received in assertions generated by a IdP server.

Changelog (Show File list) (Show related packages)

Mon Jan 25 2021 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-12

- Resolves: rhbz#1791262 - Backport SameSite=None cookie from upstream to
                           support latest browsers

Fri Oct 18 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-11

- Resolves: rhbz#1731053 - CVE-2019-13038 mod_auth_mellon: an Open Redirect
                           via the login?ReturnTo= substring which could
                           facilitate information theft [rhel-8]

Fri Oct 18 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-10

- Resolves: rhbz#1761774 - mod_auth_mellon fix for AJAX header name
                           X-Requested-With

Thu Jun 13 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-9

- Just bump the release number
- Related: rhbz#1718238 - mod_auth_mellon-diagnostics RPM not in product
                          listings

Fri Jun 07 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-8

- Resolves: rhbz#1691894 - [RFE] Config option to change mod_auth_mellon prefix

Fri Jun 07 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-7

- Apply the patch from the previous commit
- Resolves: rhbz#1692471 - CVE-2019-3877 appstream/mod_auth_mellon: open
                           redirect in logout url when using URLs with
                           backslashes [rhel-8]

Fri Jun 07 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-6

- Resolves: rhbz#1692471 - CVE-2019-3877 appstream/mod_auth_mellon: open
                           redirect in logout url when using URLs with
                           backslashes [rhel-8]

Fri Jun 07 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-5

- Resolves: rhbz#1692457 - CVE-2019-3878 mod_auth_mellon: authentication
                           bypass in ECP flow [rhel-8.1.0]

Wed Apr 24 2019 Jakub Hrozek <jhrozek@redhat.com> - 0.14.0-4

- Resolves: rhbz#1702695 - fresh install of mod_auth_mellon shows rpm
                           verification warnings

Mon Jul 30 2018 Florian Weimer <fweimer@redhat.com> - 0.14.0-3
```
- Rebuild with fixed binutils
```