[Secure-testing-team] Bug#817162: simplesamlphp: Information leakage issue in the sanitycheck module
Salvatore Bonaccorso
carnil at debian.org
Tue Mar 8 16:32:20 UTC 2016
Source: simplesamlphp
Version: 1.9.2-1
Severity: normal
Tags: security upstream fixed-upstream
Hi Thijs,
To track this issue in the BTS: There is an information leakage issue
in the sanitycheck module:
https://simplesamlphp.org/security/201603-01
Fixed by
https://github.com/simplesamlphp/simplesamlphp/commit/952027dd7f794ff4b2d4f5eddf549c5b5070fa38
upstream.
There was a CVE requested on
http://www.openwall.com/lists/oss-security/2016/03/08/4 .
Regards,
Salvatore
More information about the Secure-testing-team
mailing list