GCVE-VVD-MAGEIA-2024-81

Advisory Published

Vulnetix · Advisory published February 29, 2024

Missing input validation on mod_auth_openidc_session_chunks cookie value makes the server vulnerable to DoS attack. (CVE-2024-24814)

Download JSON Open in Console

Affected Products

Vendor	Product	Versions	Platforms
Mageia	amarok	0 (affected), 2.9.75-2.1.mga9 (unaffected)	—
Mageia	apache-mod_auth_openidc	0 (affected), 2.4.13.2-1.1.mga9 (unaffected), 0 (affected), 2.4.13.2-1.1.mga9 (unaffected)	—

Aliases

CVE-2024-24814

Transitive aliases

GHSA-797h-qjwj-28jc AZL-6479 AZL-6481 EUVD-2023-32293 CVE-2023-28625 WID-SEC-W-2025-0956 SUSE-SU-2025:01962-1 RHSA-2025:10010 EUVD-2019-5978 EUVD-2019-11023 GSD-2023-28625 RHSA-2025:7419 CVE-2025-3891 CVE-2021-32792 RHSA-2025:4227 ALSA-2025:3997 SUSE-SU-2025:1337-1 CVE-2022-23527 EUVD-2022-28556 ALSA-2025:7419 AZL-61786 RHSA-2025:4224 RHSA-2025:3945 ALSA-2024:5289 EUVD-2021-19549 RHSA-2025:10008 RHSA-2025:4597 EUVD-2025-13653 EUVD-2021-19548 RHSA-2025:4228 RHSA-2024:9180 SUSE-SU-2024:0758-1 ALSA-2025:4597 BDU:2025-10948 GHSA-v96g-5j57-774c RHSA-2025:10003 AZL-7289 WID-SEC-W-2024-1850 BDU:2024-02794 VVD-CISA-2025-3891 SUSE-SU-2025:01953-1 RHSA-2025:10004 AZL-26772 AZL-59592 RHSA-2025:4128 VVD-ANCHORE-2024-24814 AZL-42537 OPENSUSE-SU-2024:13699-1 RHSA-2025:10007 ALSA-2025:9396 ALSA-2020:3032 ALSA-2023:6940 GHSA-5fmg-x3vm-cm8v CVE-2019-14857 CVE-2025-31492 RHSA-2025:9396 BDU:2021-05111 EUVD-2021-19554 BDU:2022-01657 BDU:2024-06538 ALAS2023-2025-1188 RHSA-2025:10006 ALAS2-2020-1538 EUVD-2021-19555 RHSA-2025:7490 SUSE-SU-2025:1286-1 VVD-CISA-2025-31492 SUSE-SU-2025:01585-1 BIT-apache-2025-3891 EUVD-2021-25579 WID-SEC-W-2025-0836 ALSA-2025:7490 GSD-2024-24814 ALSA-2024:9180 CVE-2021-32786 CVE-2021-39191 ALSA-2022:1823 ALAS-2020-1448 AZL-11653 CVE-2019-20479 AZL-6480 AZL-6482 VVD-CISA-2023-28625 SUSE-SU-2025:1465-1 SUSE-SU-2025:1324-1 RHSA-2025:3997 OPENSUSE-SU-2025:14972-1 RHSA-2024:5289 SUSE-SU-2024:0757-1 AZL-42520 SUSE-SU-2024:2299-1 CVE-2021-32785 VVD-MAGEIA-2021-452 ALSA-2023:6365 VVD-CISA-2024-24814 CVE-2021-32791 VVD-CISA-2022-23527 BDU:2022-01785 RHSA-2025:4192 RHSA-2025:4225 EUVD-2025-10018 EUVD-2024-22186 SUSE-SU-2025:4532-1 BDU:2022-01677 RHSA-2025:10002

References

Updated apache-mod_auth_openidc packages fix security vulnerability

advisory

Updated apache-mod_auth_openidc packages fix security vulnerability

issue

Updated apache-mod_auth_openidc packages fix security vulnerability

issue

Updated apache-mod_auth_openidc packages fix security vulnerability

issue

Updated amarok packages fix a bug

advisory

Updated amarok packages fix a bug

issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON