Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : Lasso vulnerabilities (USN-7872-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7872-1 advisory. It was discovered that Lasso incorrectly handled certain malformed SAML responses. A remote attacker could possibly use this issue to...

[SECURITY] [DSA 6058-1] lasso security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6058-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 15, 2025 https://www.debian.org/security/faq -...

Debian dsa-6058 : liblasso-perl - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6058 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6058-1 [email protected]...

TencentOS Server 4: lasso (TSSA-2025:0862)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0862 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Amazon Linux 2 : lasso, --advisory ALAS2-2025-3077 (ALAS-2025-3077)

The version of lasso installed on the remote host is prior to 2.9.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3077 advisory. A denial of service vulnerability exists in the lassoproviderverifysamlsignature functionality of Entr'ouvert Lasso 2.5.1. A...