VYPR

rpm package

suse/python-pysaml2&distro=SUSE OpenStack Cloud 6

pkg:rpm/suse/python-pysaml2&distro=SUSE%20OpenStack%20Cloud%206

Vulnerabilities (2)

  • CVE-2016-10149HigMar 24, 2017
    affected < 2.4.0-3.1fixed 2.4.0-3.1

    XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attackers to read arbitrary files via a crafted SAML XML request or response.

  • CVE-2016-10127CriMar 3, 2017
    affected < 2.4.0-3.1fixed 2.4.0-3.1

    PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response.