packages/mod_auth_openidc
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update to 2.4.13.2 to fix CVE-2023-28625

Browse Source 
(cherry picked from commit d888a8bd0e128ed5e66f7b4bc5310197d306e917)
This commit is contained in:
starlet-dx 2023-04-12 17:50:47 +08:00 committed by openeuler-sync-bot
parent dac42e875b
commit afa2b66bb8
3 changed files with 9 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
mod_auth_openidc.spec
View File

@ -6,7 +6,7 @@
%global httpd_pkg_cache_dir /var/cache/httpd/mod_auth_openidc %global httpd_pkg_cache_dir /var/cache/httpd/mod_auth_openidc
Name: mod_auth_openidc Name: mod_auth_openidc
Version: 2.4.9.4 Version: 2.4.13.2
Release: 1 Release: 1
Summary: OpenID Connect Relying Party module for Apache 2.x HTTP Server Summary: OpenID Connect Relying Party module for Apache 2.x HTTP Server
License: ASL 2.0 License: ASL 2.0
@ -15,6 +15,7 @@ Source0: https://github.com/zmartzone/mod_auth_openidc/archive/refs/tags/v%{vers
BuildRequires: gcc httpd-devel openssl-devel curl-devel jansson-devel BuildRequires: gcc httpd-devel openssl-devel curl-devel jansson-devel
BuildRequires: pcre-devel autoconf automake cjose-devel jq-devel BuildRequires: pcre-devel autoconf automake cjose-devel jq-devel
BuildRequires: libtool
Requires: httpd-mmn = %{_httpd_mmn} Requires: httpd-mmn = %{_httpd_mmn}
%description %description
@ -27,18 +28,18 @@ an OpenID Connect Relying Party(RP) to an OpenID Connect Provider(OP).
%build %build
export MODULES_DIR=%{_httpd_moddir} export MODULES_DIR=%{_httpd_moddir}
export APXS2_OPTS='-S LIBEXECDIR=${MODULES_DIR}' export APXS2_OPTS='-S LIBEXECDIR=${MODULES_DIR}'
autoreconf autoreconf -vfi
%configure --with-jq=/usr/lib64/ --without-hiredis %configure --with-jq=/usr/lib64/ --without-hiredis
make %{?_smp_mflags} make %{?_smp_mflags}
%check %check
export MODULES_DIR=%{_httpd_moddir} export MODULES_DIR=%{_httpd_moddir}
export APXS2_OPTS='-S LIBEXECDIR=${MODULES_DIR}' export APXS2_OPTS='-S LIBEXECDIR=${MODULES_DIR}'
make test make check
%install %install
install -d $RPM_BUILD_ROOT%{_httpd_moddir} install -d $RPM_BUILD_ROOT%{_httpd_moddir}
make install MODULES_DIR=$RPM_BUILD_ROOT%{_httpd_moddir} make install DESTDIR=$RPM_BUILD_ROOT MODULES_DIR=$RPM_BUILD_ROOT%{_httpd_moddir}
install -m 755 -d $RPM_BUILD_ROOT%{_httpd_modconfdir} install -m 755 -d $RPM_BUILD_ROOT%{_httpd_modconfdir}
echo 'LoadModule auth_openidc_module modules/mod_auth_openidc.so' > \ echo 'LoadModule auth_openidc_module modules/mod_auth_openidc.so' > \
@ -47,6 +48,7 @@ echo 'LoadModule auth_openidc_module modules/mod_auth_openidc.so' > \
install -m 755 -d $RPM_BUILD_ROOT%{_httpd_confdir} install -m 755 -d $RPM_BUILD_ROOT%{_httpd_confdir}
install -m 644 auth_openidc.conf $RPM_BUILD_ROOT%{_httpd_confdir} install -m 644 auth_openidc.conf $RPM_BUILD_ROOT%{_httpd_confdir}
sed -i 's!/var/cache/apache2/!/var/cache/httpd/!' $RPM_BUILD_ROOT%{_httpd_confdir}/auth_openidc.conf sed -i 's!/var/cache/apache2/!/var/cache/httpd/!' $RPM_BUILD_ROOT%{_httpd_confdir}/auth_openidc.conf
install -m 700 -d $RPM_BUILD_ROOT%{httpd_pkg_cache_dir}
install -m 700 -d $RPM_BUILD_ROOT%{httpd_pkg_cache_dir}/{metadata,cache} install -m 700 -d $RPM_BUILD_ROOT%{httpd_pkg_cache_dir}/{metadata,cache}
%files %files
@ -58,6 +60,9 @@ install -m 700 -d $RPM_BUILD_ROOT%{httpd_pkg_cache_dir}/{metadata,cache}
%dir %attr(0700, apache, apache) %{httpd_pkg_cache_dir}/{metadata,cache} %dir %attr(0700, apache, apache) %{httpd_pkg_cache_dir}/{metadata,cache}
%changelog %changelog
* Wed Apr 12 2023 yaoxin <yao_xin001@hoperun.com> - 2.4.13.2-1
- Update to 2.4.13.2 to fix CVE-2023-28625
* Wed Sep 15 2021 houyingchao <houyingchao@huawei.com> 2.4.9.4-1 * Wed Sep 15 2021 houyingchao <houyingchao@huawei.com> 2.4.9.4-1
- Upgrade to 2.4.9.4 - Upgrade to 2.4.9.4
- Fix CVE-2021-39191 - Fix CVE-2021-39191

BIN
v2.4.13.2.tar.gz Normal file
View File

Binary file not shown.

BIN
v2.4.9.4.tar.gz
View File

Binary file not shown.