USN-3924-1

Advisory lineage Upstream: 4 Downstream: 0

Upstream

CVE-2019-3877 CVE-2019-3878 UBUNTU-CVE-2019-3877 UBUNTU-CVE-2019-3878

Published: 28 Mar 2019, 13:24

Last modified:04 Feb 2026, 02:38

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

28 Mar 2019, 13:24

Published

Vulnerability first disclosed

04 Feb 2026, 02:38

Last Modified

Vulnerability information updated

Description

libapache2-mod-auth-mellon vulnerabilities It was discovered that mod_auth_mellon incorrectly handled certain requests. An attacker could possibly use this issue to redirect a user to a malicious URL. (CVE-2019-3877) It was discovered that mod_auth_mellon incorrectly handled certain requests. An attacker could possibly use this issue to access sensitive information. (CVE-2019-3878)

Affected Systems

ubuntu•libapache2-mod-auth-mellon
< 0.13.1-1ubuntu0.1

References (3)

https://ubuntu.com/security/notices/USN-3924-1
https://ubuntu.com/security/CVE-2019-3877
https://ubuntu.com/security/CVE-2019-3878