Due to a nil pointer dereference, a malformed XML Digital Signature can cause a panic during validation. If user supplied signatures are being validated, this may be used as a denial of service vector.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/russellhaering/gosaml2 | lt | 0.7.0 | |
github.com/russellhaering/goxmldsig | lt | 1.1.1 |