This update for apache2-mod_auth_openidc fixes the following issues: - CVE-2022-23527: Fixed open redirect in oidc_validate_redirect_url using tab character . - CVE-2021-39191: Fixed open redirect issue in target_link_uri parameter .