openSUSE-SU-2021:1057-1

Опубликовано: 19 июл. 2021

Источник: suse-cvrf

Описание

Security update for lasso

This update for lasso fixes the following issues:

CVE-2021-28091: Fixed XML signature wrapping vulnerability when parsing SAML responses (boo#1186768)

liblasso-devel-2.6.1-lp152.2.3.1

liblasso3-2.6.1-lp152.2.3.1

python3-lasso-2.6.1-lp152.2.3.1

Lasso all versions prior to 2.7.0 has improper verification of a cryptographic signature.

openSUSE Leap 15.2:liblasso-devel-2.6.1-lp152.2.3.1

openSUSE Leap 15.2:liblasso3-2.6.1-lp152.2.3.1

openSUSE Leap 15.2:python3-lasso-2.6.1-lp152.2.3.1