Oval Definition:oval:org.cisecurity:def:52
Revision Date:2016-02-08Version:2
Title:DSA-3207-1 -- shibboleth-sp2 -- security update
Description:A denial of service vulnerability was found in the Shibboleth (an federated identity framework) Service Provider. When processing certain malformed SAML message generated by an authenticated attacker, the daemon could crash.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2015-2684
DSA-3207-1
Platform(s):Debian GNU/kFreeBSD 7.0
Debian GNU/Linux 7.0
Product(s):shibboleth-sp2
Definition Synopsis
  • Debian 7 is installed
  • AND GNU/Linux or GNU/kFreeBSD kernel
  • Debian GNU/Linux is installed
  • OR Debian GNU/kFreeBSD is installed
  • AND shibboleth-sp2 is earlier than 0:2.4.3+dfsg-5+deb7u1
  • BACK