CVE-2018-7711
CVE-2018-7711 affects the SimpleSAMLphp saml2 library, specifically HTTPRedirect.php in versions prior to 1.15.4. The root cause is an incorrect check of return values in the signature validation utilities, caused by a dependency on PHP behavior that interprets a -1 error code as true. This lets ...