5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.009 Low
EPSS
Percentile
82.7%
Package : opensaml2
Version : 2.3-2+squeeze2
CVE ID : CVE-2015-0851
It was discovered that opensaml2, a Security Assertion Markup Language
library, needed to be rebuilt against a fixed version of the xmltooling
package due to its use of macros vulnerable to CVE-2015-0851 as fixed in
the DSA 3321-1 update.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 6 | all | libsaml6 | <ย 2.3-2+squeeze2 | libsaml6_2.3-2+squeeze2_all.deb |
Debian | 6 | all | opensaml2-schemas | <ย 2.3-2+squeeze2 | opensaml2-schemas_2.3-2+squeeze2_all.deb |
Debian | 6 | all | opensaml2-tools | <ย 2.3-2+squeeze2 | opensaml2-tools_2.3-2+squeeze2_all.deb |
Debian | 6 | all | opensaml2 | <ย 2.3-2+squeeze2 | opensaml2_2.3-2+squeeze2_all.deb |
Debian | 6 | all | libsaml2-doc | <ย 2.3-2+squeeze2 | libsaml2-doc_2.3-2+squeeze2_all.deb |
Debian | 6 | all | libsaml2-dev | <ย 2.3-2+squeeze2 | libsaml2-dev_2.3-2+squeeze2_all.deb |