2 matches found
UBUNTU-CVE-2018-6519
The SAML2 library before 1.10.4, 2.x before 2.3.5, and 3.x before 3.1.1 in SimpleSAMLphp has a Regular Expression Denial of Service vulnerability for fraction-of-seconds data in a timestamp...
SimpleSAMLphp SAML2 Library Denial of Service Vulnerability
SimpleSAMLphp is a program written in native PHP to handle authentication. The SAML2 stock in SimpleSAMLphp is vulnerable to a regular expression denial of service vulnerability. The vulnerability arises due to fraction-of-seconds data in timestamp. An attacker can exploit this vulnerability to...