Advertisement

Latest News

[ Windows | Linux | Apple ]

· Windows 8 is an enterprise 'non-starter' because IT sees no value in changes
· What to Expect from Unity in Ubuntu 13.10
· Analysts praise Nokia's new Lumia 925
· Best Business Laptops - May 2013 and more
· openSUSE 13.1 Milestone 1 released
· How to Install Cinnamon 1.8 on Ubuntu 13.04
· Tim Cook Shares Details About New 'Made in USA' Mac Model
· Surface Pro firmware and driver pack - May 2013
· More Surface Pro launch dates revealed in Europe
· Apple Updates iTunes to Version 11.0.3 With New MiniPlayer and Improvements

Upcoming News

· Gigabyte Intel Z87 Motherboard Lineup Preview
· [ANNOUNCE] libchamplain 0.12.4
· [security-announce] SUSE-SU-2013:0810-1: important: Security update for oracle-update
· [security-announce] SUSE-SU-2013:0811-1: important: Security update for oracle-update
· [security-announce] SUSE-SU-2013:0809-1: important: Security update for Acrobat Reader
· Rosewill RDEE-12002 USB 3.0 Hard Drive Enclosure @ techPowerUp
· ASUS M5A97 R2.0 Motherboard @ Hardware Secrets
· Samsung Galaxy S4 Smartphone Review @ HardwareHeaven.com
· [RHSA-2013:0832-01] Important: kernel security update
· [Tech ARP] Hard Disk Drive Myths Debunked! Rev. 5.1

Linux Compatibility

· Dell Dimension 9100
· CL-CAM50001 UPC=3700284609322
· DFE 520 TX
· nVidia GeForce4 MX 440
· Gore: Ultimate Soldier
· SMC2802W V2 wi-fi 54Mbps PCI card
· Wireless modem router N300
· Dell P780
· ASUS A7V8X
· BricsCAD for Linux

New Forum Topics

· Enjoy Preakness Stakes live stream online
by: charles0120r
on: 2013-05-18 10:29
0 replies, 0 views

· Watch Preakness Stakes 2013 online
by: charles0120r
on: 2013-05-18 10:28
0 replies, 0 views

· shutdown link ?
by: estirwent
on: 2013-05-11 17:46
18 replies, 6278 views

· Laptop keyboard drank soda
by: Zenn
on: 2013-04-30 00:27
1 replies, 616 views

· connecting to to internet with ubuntu
by: Zenn
on: 2013-04-30 00:26
2 replies, 4471 views

News Channels

· Drivers
· Guides
· Reviews
· Security
· Software
· Press Release
· Updates
· Interviews
· Linux
· General
· Debian
· Red Hat
· Slackware
· Gentoo
· Mandriva
· White Box
· SUSE
· GNOME
· KDE
· CentOS
· Ubuntu
· MEPIS
· Android

What's New

Login to see an overview of all news stories since your last visit.

Welcome to our website

To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.

DSA 2387-1: simplesamlphp security update

Posted by Philipp Esselbach on: 01/11/2012 09:30 PM [ Print | 0 comment(s) ]

A simplesamlphp security update has been released for Debian GNU/Linux

- -------------------------------------------------------------------------
Debian Security Advisory DSA-2387-1 security@debian.org
http://www.debian.org/security/ Thijs Kinkhorst
January 11, 2012 http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : simplesamlphp
Vulnerability : insufficient input sanitation
Problem type : remote
Debian-specific: no

timtai1 discovered that simpleSAMLphp, an authentication and federation
platform, is vulnerable to a cross site scripting attack, allowing a
remote attacker to access sensitive client data.

The oldstable distribution (lenny) does not contain a simplesamlphp
package.

For the stable distribution (squeeze), this problem has been fixed in
version 1.6.3-3.

For the unstable distribution (sid), this problem has been fixed in
version 1.8.2-1.

We recommend that you upgrade your simplesamlphp packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

All products mentioned are registered trademarks or trademarks of their respective owners.
© 2002-2013 Esselbach Internet Solutions - All Rights Reserved. Terms and privacy policy
Powered by Contentteller® Business Edition