oss-sec mailing list archives

New security advisory for Apache CXF Fediz - CVE-2016-4464

From: Colm O hEigeartaigh <coheigea () apache org>
Date: Thu, 8 Sep 2016 18:43:47 +0100

A new security advisory has been released for Apache CXF Fediz:

CVE-2016-4464: Apache CXF Fediz application plugins do not match the SAML
AudienceRestriction values against the list of configured audience URIs.

http://cxf.apache.org/security-advisories.data/CVE-2016-4464.txt.asc?version=1&modificationDate=1473350153000&api=v2


-- 
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com

Current thread:

New security advisory for Apache CXF Fediz - CVE-2016-4464 Colm O hEigeartaigh (Sep 08)