Lucene search
SuseOPENSUSE-SU-2021:1057-1HistoryJul 20, 2021 - 12:00 a.m.
Security update for lasso (important)
2021-07-2000:00:00
lists.opensuse.org
54
update
lasso
fix
vulnerability
cve-2021-28091
xml signature
saml
opensuse
EPSS
0.006
Percentile
78.1%
An update that fixes one vulnerability is now available.
Description:
This update for lasso fixes the following issues:
- CVE-2021-28091: Fixed XML signature wrapping vulnerability when parsing
SAML responses (boo#1186768)
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-1057=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.2 | x86_64 | < - openSUSE Leap 15.2 (x86_64): | - openSUSE Leap 15.2 (x86_64):.x86_64.rpm |
Related
redos
redos
ROS-20240730-02
2024-07-30 00:00:00
prion
prion
Design/Logic Flaw
2021-06-04 15:15:00
fedora
fedora
[SECURITY] Fedora 33 Update: lasso-2.7.0-1.fc33
2021-06-11 01:20:08
[SECURITY] Fedora 34 Update: lasso-2.7.0-1.fc34
2021-06-11 01:15:56
openvas
openvas
Debian: Security Advisory (DSA-4926-1)
2021-06-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2589-1)
2021-08-04 00:00:00
Fedora: Security Advisory for lasso (FEDORA-2021-508acb1153)
2021-06-17 00:00:00
osv
osv
lasso - security update
2021-06-10 00:00:00
Moderate: lasso security and enhancement update
2021-11-09 09:01:05
lasso - security update
2021-06-03 00:00:00
nessus
nessus
RHEL 8 : lasso (RHSA-2021:4325)
2021-11-11 00:00:00
Scientific Linux Security Update : lasso on SL7.x i686/x86_64 (2021:2989)
2021-08-03 00:00:00
EulerOS 2.0 SP3 : lasso (EulerOS-SA-2021-2589)
2021-10-25 00:00:00
cisco
cisco
Lasso SAML Implementation Vulnerability Affecting Cisco Products: June 2021
2021-06-01 12:30:00
ubuntucve
ubuntucve
CVE-2021-28091
2021-06-01 00:00:00
cvelist
cvelist
CVE-2021-28091
2021-06-04 14:39:14
redhat
redhat
(RHSA-2021:2989) Important: lasso security update
2021-08-02 14:32:12
(RHSA-2021:4325) Moderate: lasso security and enhancement update
2021-11-09 09:01:05
debian
debian
[SECURITY] [DSA 4926-1] lasso security update
2021-06-03 20:22:41
[SECURITY] [DLA 2684-1] lasso security update
2021-06-10 05:49:35
[SECURITY] [DSA 4926-1] lasso security update
2021-06-03 20:22:41
amazon
amazon
Important: lasso
2021-06-16 20:37:00
Important: lasso
2021-09-02 22:54:00
cve
cve
CVE-2021-28091
2021-06-04 15:15:07
redhatcve
redhatcve
CVE-2021-28091
2021-06-01 14:19:14
akamaiblog
akamaiblog
Akamai EAA Impersonation Vulnerability - A Deep Dive
2021-06-01 04:00:00
Akamai EAA Impersonation Vulnerability - A Deep Dive
2021-06-01 13:00:30
SAML Implementation Vulnerability Impacting Some Akamai Services
2021-06-01 13:00:00
cbl_mariner
cbl_mariner
CVE-2021-28091 affecting package lasso for versions less than 2.8.0-1
2022-10-05 17:21:40
ubuntu
ubuntu
Lasso vulnerability
2021-06-02 00:00:00
rocky
rocky
lasso security and enhancement update
2021-11-09 09:01:05
debiancve
debiancve
CVE-2021-28091
2021-06-04 15:15:07
almalinux
almalinux
Moderate: lasso security and enhancement update
2021-11-09 09:01:05
oraclelinux
oraclelinux
lasso security update
2021-08-02 00:00:00
lasso security and enhancement update
2021-11-16 00:00:00
nvd
nvd
CVE-2021-28091
2021-06-04 15:15:07
f5
f5
K02151228 : Lasso XML signature wrapping vulnerability CVE-2021-28091
2021-06-07 00:00:00
veracode
veracode
Insecure Cryptographic Function
2021-08-13 15:38:08
freebsd
freebsd
lasso -- signature checking failure
2021-06-01 00:00:00