Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libapache2-mod-auth-mellon@0.12.0-2%2Bdeb9u1
purl pkg:deb/debian/libapache2-mod-auth-mellon@0.12.0-2%2Bdeb9u1
Next non-vulnerable version 0.17.0-1+deb11u1
Latest non-vulnerable version 0.17.0-1+deb11u1
Risk 3.6
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-bbdx-48p2-4fhw
Aliases:
CVE-2019-3878
security update
0.14.2-1
Affected by 2 other vulnerabilities.
VCID-hb2c-3rxv-3kgk
Aliases:
CVE-2019-13038
mod_auth_mellon: Open Redirect via the login?ReturnTo= substring which could facilitate information theft
0.17.0-1+deb11u1
Affected by 0 other vulnerabilities.
VCID-q6td-hjpx-uyba
Aliases:
CVE-2021-3639
mod_auth_mellon: Open Redirect vulnerability in logout URLs
0.17.0-1+deb11u1
Affected by 0 other vulnerabilities.
VCID-tbkm-srgg-67g7
Aliases:
CVE-2019-3877
security update
0.14.2-1
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (5)
Vulnerability Summary Aliases
VCID-a7h3-ujsg-vqhu mod_auth_mellon: Cross-site session transfer vulnerability CVE-2017-6807
VCID-bbdx-48p2-4fhw security update CVE-2019-3878
VCID-bj59-cvh7-bkdg mod_auth_mellon: Missing error check when calling ap_get_client_block() CVE-2016-2145
VCID-tbkm-srgg-67g7 security update CVE-2019-3877
VCID-z18x-abc1-nyek mod_auth_mellon: Failure to limit amount of POST data submitted by client CVE-2016-2146

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T23:24:45.623717+00:00 Debian Oval Importer Affected by VCID-tbkm-srgg-67g7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:43:21.567506+00:00 Debian Oval Importer Affected by VCID-bbdx-48p2-4fhw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:20:38.321993+00:00 Debian Oval Importer Fixing VCID-a7h3-ujsg-vqhu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:06:42.724160+00:00 Debian Oval Importer Affected by VCID-hb2c-3rxv-3kgk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:14:41.097134+00:00 Debian Oval Importer Fixing VCID-z18x-abc1-nyek https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:49:09.660304+00:00 Debian Oval Importer Fixing VCID-bj59-cvh7-bkdg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:21:47.659471+00:00 Debian Oval Importer Affected by VCID-q6td-hjpx-uyba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T14:37:20.650399+00:00 Debian Oval Importer Fixing VCID-bbdx-48p2-4fhw https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T14:23:05.614935+00:00 Debian Oval Importer Fixing VCID-tbkm-srgg-67g7 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-11T23:00:13.426661+00:00 Debian Oval Importer Affected by VCID-tbkm-srgg-67g7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:19:56.530024+00:00 Debian Oval Importer Affected by VCID-bbdx-48p2-4fhw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:58:04.608716+00:00 Debian Oval Importer Fixing VCID-a7h3-ujsg-vqhu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:44:41.404924+00:00 Debian Oval Importer Affected by VCID-hb2c-3rxv-3kgk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:54:26.675845+00:00 Debian Oval Importer Fixing VCID-z18x-abc1-nyek https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:31:28.541165+00:00 Debian Oval Importer Fixing VCID-bj59-cvh7-bkdg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:09:05.044546+00:00 Debian Oval Importer Affected by VCID-q6td-hjpx-uyba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T14:25:37.436304+00:00 Debian Oval Importer Fixing VCID-bbdx-48p2-4fhw https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T14:11:26.625557+00:00 Debian Oval Importer Fixing VCID-tbkm-srgg-67g7 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-08T22:34:21.059345+00:00 Debian Oval Importer Affected by VCID-tbkm-srgg-67g7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:56:03.526040+00:00 Debian Oval Importer Affected by VCID-bbdx-48p2-4fhw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:35:17.008372+00:00 Debian Oval Importer Fixing VCID-a7h3-ujsg-vqhu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:22:30.893478+00:00 Debian Oval Importer Affected by VCID-hb2c-3rxv-3kgk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:33:53.632894+00:00 Debian Oval Importer Fixing VCID-z18x-abc1-nyek https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:14:50.866115+00:00 Debian Oval Importer Fixing VCID-bj59-cvh7-bkdg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:01:40.430673+00:00 Debian Oval Importer Affected by VCID-q6td-hjpx-uyba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T22:59:06.652232+00:00 Debian Oval Importer Fixing VCID-bbdx-48p2-4fhw https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T22:45:24.089445+00:00 Debian Oval Importer Fixing VCID-tbkm-srgg-67g7 https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0