Red Hat Security Advisory 2020-1660-01 - The mod_auth_mellon module for the Apache HTTP Server is an authentication service that implements the SAML 2.0 federation protocol. The module grants access based on the attributes received in assertions generated by an IdP server. Issues addressed include an open redirection vulnerability.
90b971c2267a5bcdacfc52a703cfa0c3dcb690bd2faf9c70437153516329c083
Red Hat Security Advisory 2020-1003-01 - The mod_auth_mellon module for the Apache HTTP Server is an authentication service that implements the SAML 2.0 federation protocol. The module grants access based on the attributes received in assertions generated by an IdP server. An open redirection vulnerability was addressed.
4b0131611c1856e3cfb41e25c6de321c7435a965ad79574a64bc14b8508014a9
Ubuntu Security Notice 4291-1 - It was discovered that mod_auth_mellon incorrectly handled certain requests. An attacker could possibly use this issue to redirect a user to a malicious URL.
711a647bdd901a450dd17d6c7c8386a50244fab44728fcad01a811450ca18bfe