Information on source package simplesamlphp

Available versions

ReleaseVersion
wheezy1.9.2-1
jessie1.13.1-2
stretch1.14.11-1
buster1.14.15-1
sid1.15.0-1

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-12874vulnerablevulnerablefixedfixedfixedThe InfoCard module 1.0 for SimpleSAMLphp allows attackers to spoof ...
CVE-2017-12873vulnerablevulnerablevulnerablefixedfixedSimpleSAMLphp 1.7.0 through 1.14.10 might allow attackers to obtain ...
CVE-2017-12872vulnerablevulnerablevulnerablefixedfixedThe (1) Htpasswd authentication source in the authcrypt module and (2) ...
CVE-2017-12871fixedfixedvulnerablefixedfixedThe aesEncrypt method in lib/SimpleSAML/Utils/Crypto.php in ...
CVE-2017-12870vulnerablevulnerablevulnerablefixedfixedSimpleSAMLphp 1.14.12 and earlier make it easier for man-in-the-middle ...
CVE-2017-12869vulnerablevulnerablevulnerablefixedfixedThe multiauth module in SimpleSAMLphp 1.14.13 and earlier allows ...
CVE-2017-12868vulnerablevulnerablevulnerablefixedfixedThe secureCompare method in lib/SimpleSAML/Utils/Crypto.php in ...
CVE-2017-12867vulnerablevulnerablevulnerablefixedfixedThe SimpleSAML_Auth_TimeLimitedToken class in SimpleSAMLphp 1.14.14 ...
CVE-2016-9955vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedThe SimpleSAML_XML_Validator class constructor in SimpleSAMLphp before ...
CVE-2016-9814vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedThe validateSignature method in the SAML2\Utils class in SimpleSAMLphp ...

Open unimportant issues

BugwheezyjessiestretchbustersidDescription
CVE-2016-3124vulnerablevulnerablefixedfixedfixedThe sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote ...

Resolved issues

BugDescription
CVE-2012-0908Cross-site scripting (XSS) vulnerability in logout.php in ...
CVE-2012-0040Cross-site scripting (XSS) vulnerability in ...
CVE-2011-4625simplesamlphp xml encryption issues

Security announcements

DSA / DLADescription
DSA-2387-1simplesamlphp - cross site scripting
DSA-2330-1simplesamlphp - several

Search for package or bug name: Reporting problems