diff --git a/mod_auth_openidc-2.4.16.11.tar.gz b/mod_auth_openidc-2.4.16.11.tar.gz deleted file mode 100644 index 8c2496491d992515b463e9dbbf310762d47d3f90..0000000000000000000000000000000000000000 Binary files a/mod_auth_openidc-2.4.16.11.tar.gz and /dev/null differ diff --git a/mod_auth_openidc-2.4.18.1.tar.gz b/mod_auth_openidc-2.4.18.1.tar.gz new file mode 100644 index 0000000000000000000000000000000000000000..b0a8e050211c9a338057aaf77cded162a5b98b6f Binary files /dev/null and b/mod_auth_openidc-2.4.18.1.tar.gz differ diff --git a/mod_auth_openidc.spec b/mod_auth_openidc.spec index ec0983bff2888750e2edea40504314d7ac874bcd..5facb1a17cc468fefbb1dc7ebf4fb386f31530d3 100644 --- a/mod_auth_openidc.spec +++ b/mod_auth_openidc.spec @@ -6,7 +6,7 @@ %global httpd_pkg_cache_dir /var/cache/httpd/mod_auth_openidc Name: mod_auth_openidc -Version: 2.4.16.11 +Version: 2.4.18.1 Release: 1 Summary: OpenID Connect Relying Party module for Apache 2.x HTTP Server License: Apache-2.0 @@ -60,6 +60,19 @@ install -m 700 -d $RPM_BUILD_ROOT%{httpd_pkg_cache_dir}/{metadata,cache} %dir %attr(0700, apache, apache) %{httpd_pkg_cache_dir}/{metadata,cache} %changelog +* Mon Oct 27 2025 Ge Wang - 2.4.18.1-1 +- Update to 2.4.18.1 + * use _oidc_strcpy instead of _oidc_strncpy to avoid segfaults on some platforms. + * turn debug printouts on config errors into warnings. + * pass JSON real claims without trailing zeros, use 8 digits precision instead of 6. + * fix segmentation faults upon gracefully restarting the same process: + use the server process pool for static variable allocation rather than the pconf pool. + * avoid possible segfault after restart twice; + * fix usage of OIDCSessionType client-cookie:persistent:store_id_token. + * fix usage of OIDCPreservePostTemplates, regression in 2.4.17. + * fix memory leaks when using provider specific client keys and/or + signed_jwks_uri_key in a multi-provider setup + * Wed Apr 09 2025 yaoxin <1024769339@qq.com> - 2.4.16.11-1 - Update to 2.4.16.11 for fix CVE-2025-31492