| Errata ID | 398 |
|---|---|
| Date | 2017-02-16 |
| Source package | python-pysaml2 |
| Fixed in version | 2.4.0-2.4.201702142305 |
| Description | This update addresses the following issues: * python-pysaml2 did not correctly sanitize the XML messages it handled. This allowed a remote attacker to perform XML External Entity attacks, leading to a wide range of exploits (CVE-2016-10127) |
| Additional notes | |
| CVE ID | CVE-2016-10127 |
| UCS Bug number | #43393 |
