Oval Definition:
oval:org.opensuse.security:def:201610149
Revision Date
:
2020-11-28
Version
:
1
Title
:
CVE-2016-10149
Description
:
XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attackers to read arbitrary files via a crafted SAML XML request or response.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2016-10149
SUSE-SU-2017:0569-1
Platform(s)
:
SUSE OpenStack Cloud 6
Product(s)
:
Definition Synopsis
SUSE OpenStack Cloud 6 is installed
AND
Package Information
python-defusedxml-0.4.1-2 is installed
OR
python-pysaml2-2.4.0-3 is installed
BACK