Описание
Security update for opensaml
This update for opensaml fixes the following issues:
Security issue fixed:
- CVE-2017-16853: Fix the DynamicMetadataProvider class to properly configure itself with the MetadataFilter plugins, to avoid possible MITM attacks (bsc#1068685).
This update was imported from the SUSE:SLE-12-SP1:Update update project.
Список пакетов
openSUSE Leap 42.2
libsaml-devel-2.5.5-6.1
libsaml8-2.5.5-6.1
opensaml-2.5.5-6.1
opensaml-bin-2.5.5-6.1
opensaml-schemas-2.5.5-6.1
openSUSE Leap 42.3
libsaml-devel-2.5.5-6.1
libsaml8-2.5.5-6.1
opensaml-2.5.5-6.1
opensaml-bin-2.5.5-6.1
opensaml-schemas-2.5.5-6.1
Ссылки
- E-Mail link for openSUSE-SU-2017:3241-1
- SUSE Security Ratings
Описание
The DynamicMetadataProvider class in saml/saml2/metadata/impl/DynamicMetadataProvider.cpp in OpenSAML-C in OpenSAML before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and does not perform critical security checks such as signature verification, enforcement of validity periods, and other checks specific to deployments, aka CPPOST-105.
Затронутые продукты
openSUSE Leap 42.2:libsaml-devel-2.5.5-6.1
openSUSE Leap 42.2:libsaml8-2.5.5-6.1
openSUSE Leap 42.2:opensaml-2.5.5-6.1
openSUSE Leap 42.2:opensaml-bin-2.5.5-6.1
Ссылки
- CVE-2017-16853
- SUSE Bug 1068685