VYPR

rpm package

suse/shibboleth-sp&distro=SUSE Linux Enterprise Software Development Kit 12 SP3

pkg:rpm/suse/shibboleth-sp&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3

Vulnerabilities (1)

  • CVE-2017-16852HigNov 16, 2017
    affected < 2.5.5-6.3.1fixed 2.5.5-6.3.1

    shibsp/metadata/DynamicMetadataProvider.cpp in the Dynamic MetadataProvider plugin in Shibboleth Service Provider before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and does not perform critical security checks such as signature verification, enforcem