module: github.com/russellhaering/gosaml2 | |
versions: | |
- fixed: v0.6.0 | |
description: | | |
An XML message can be maliciously crafted such that signature | |
verification is bypassed. | |
published: 2021-04-14T12:00:00Z | |
cve: CVE-2020-29509 | |
credit: Juho Nurminen | |
symbols: | |
- parseResponse | |
links: | |
commit: https://github.com/russellhaering/gosaml2/commit/42606dafba60c58c458f14f75c4c230459672ab9 | |
context: | |
- https://github.com/russellhaering/gosaml2/security/advisories/GHSA-xhqq-x44f-9fgg |