Debian Security Advisory DSA 1700-1 (lasso)

The remote host is missing an update to lasso announced via advisory DSA 1700-1. OpenVAS Vulnerability Test $Id: deb17001.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1700-1 lasso Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Debian DSA-1700-1 : lasso - incorrect API usage

It was discovered that Lasso, a library for Liberty Alliance and SAML protocols performs incorrect validation of the return value of OpenSSL's DSAverify function. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...