Описание
The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| simplesamlphp | fixed | 1.14.1-1 | package |
Примечания
https://simplesamlphp.org/security/201603-01
Fixed upstream in 1.14.1
https://github.com/simplesamlphp/simplesamlphp/commit/952027dd7f794ff4b2d4f5eddf549c5b5070fa38
https://www.openwall.com/lists/oss-security/2016/03/08/4
Not treated as a security issue, many components in Debian reveal the release in use
Связанные уязвимости
The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors.
The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors.
SimpleSAMLphp Information leakage issue in the sanitycheck module