Date: Sat, 14 Nov 2015 15:32:32 +0000 From: Colm O hEigeartaigh <coheigea@...che.org> To: "users@....apache.org" <users@....apache.org>, "dev@....apache.org" <dev@....apache.org>, Apache Security Response Team <security@...che.org>, oss-security@...ts.openwall.com, bugtraq@...urityfocus.com Subject: New security advisory for Apache CXF A new security advisory has been released for Apache CXF: CVE-2015-5253 <http://cxf.apache.org/security-advisories.data/CVE-2015-5253.txt.asc?version=1&modificationDate=1447433340000&api=v2>: Apache CXF SAML SSO processing is vulnerable to a wrapping attack Please update to the latest CXF versions if you are using SAML SSO. More information on CXF security advisories at the following page: http://cxf.apache.org/security-advisories.html Colm. -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ