4 matches found
[SECURITY] [DLA 290-2] opensaml2 security update
Package : opensaml2 Version : 2.3-2+squeeze2 CVE ID : CVE-2015-0851 It was discovered that opensaml2, a Security Assertion Markup Language library, needed to be rebuilt against a fixed version of the xmltooling package due to its use of macros vulnerable to CVE-2015-0851 as fixed in the DSA 3321-...
Debian DLA-290-2 : opensaml2 security update
It was discovered that opensaml2, a Security Assertion Markup Language library, needed to be rebuilt against a fixed version of the xmltooling package due to its use of macros vulnerable to CVE-2015-0851 as fixed in the DSA 3321-1 update. NOTE: Tenable Network Security has extracted the preceding...
Debian DSA-3321-1 : xmltooling - security update
The InCommon Shibboleth Training team discovered that XMLTooling, a C++ XML parsing library, did not properly handle an exception when parsing well-formed but schema-invalid XML. This could allow remote attackers to cause a denial of service crash via crafted XML data. %NASLMINLEVEL 70300 C Tenab...
Debian Security Advisory DSA 3321-1 (xmltooling - security update)
The InCommon Shibboleth Training team discovered that XMLTooling, a C++ XML parsing library, did not properly handle an exception when parsing well-formed but schema-invalid XML. This could allow remote attackers to cause a denial of service crash via crafted XML data. OpenVAS Vulnerability Test...