| Release | Version |
|---|---|
| bullseye | 2.5.2-2+deb11u3 |
| bookworm | 2.7.5-3+deb12u1 |
| trixie | 2.7.6+ds-3 |
| forky | 2.7.6+ds-4 |
| sid | 2.7.6+ds-4 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2024-25715 | vulnerable (no DSA, postponed) | fixed | fixed | fixed | fixed | Glewlwyd SSO server 2.x through 2.7.6 allows open redirection via redi ... |
| Bug | Description |
|---|---|
| CVE-2023-49208 | scheme/webauthn.c in Glewlwyd SSO server before 2.7.6 has a possible b ... |
| CVE-2022-29967 | static_compressed_inmemory_website_callback.c in Glewlwyd through 2.6. ... |
| CVE-2022-27240 | scheme/webauthn.c in Glewlwyd SSO server 2.x before 2.6.2 has a buffer ... |
| CVE-2021-45379 | Glewlwyd 2.0.0, fixed in 2.6.1 is affected by an incorrect access cont ... |
| CVE-2021-40818 | scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer ov ... |