Revision Date: | 2016-02-08 | Version: | 2 |
Title: | DSA-3207-1 -- shibboleth-sp2 -- security update |
Description: | A denial of service vulnerability was found in the Shibboleth (an federated identity framework) Service Provider. When processing certain malformed SAML message generated by an authenticated attacker, the daemon could crash. |
Family: | unix | Class: | patch |
Status: | ACCEPTED | Reference(s): | CVE-2015-2684 DSA-3207-1
|
Platform(s): | Debian GNU/kFreeBSD 7.0 Debian GNU/Linux 7.0
| Product(s): | shibboleth-sp2
|
Definition Synopsis |
Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel
Debian GNU/Linux is installed
OR Debian GNU/kFreeBSD is installed
AND shibboleth-sp2 is earlier than 0:2.4.3+dfsg-5+deb7u1
|