pkg:Debian/shibboleth-sp

All known vulnerabilities

• CRITICAL9.1CVE-2025-9943shibboleth-sp - security update
  from 0, < 3.4.1+dfsg-2+deb12u1
• CRITICAL9.1CVE-2025-9943shibboleth-sp - security update
  from 0, < 3.2.2+dfsg1-1+deb11u1
• CRITICAL9.1CVE-2025-9943shibboleth-sp - security update
  from 0, < 3.2.2+dfsg1-1+deb11u1
• HIGH7.8CVE-2019-19191Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files in a directory controlled by the service us…
  from 0, < 3.1.0+dfsg1-2
• HIGH7.5CVE-2021-31826shibboleth-sp - security update
  from 0, < 3.2.2+dfsg1-1
• HIGH7.5CVE-2021-31826shibboleth-sp - security update
  from 0, < 3.0.4+dfsg1-1+deb10u2
• MEDIUM5.3CVE-2021-28963shibboleth-sp - security update
  from 0, < 3.0.4+dfsg1-1+deb10u1
• MEDIUM5.3CVE-2021-28963shibboleth-sp - security update
  from 0, < 3.2.1+dfsg1-1
• —CVE-2009-3300opensaml2 shibboleth-sp shibboleth-sp2 - cross-site scripting
  from 0, < 3.0.2+dfsg1-2
• —CVE-2009-3300opensaml2 shibboleth-sp shibboleth-sp2 - cross-site scripting
  from 0, < 1.3f.dfsg1-2+etch2
• —CVE-2009-3476Buffer overflow in OpenSAML before 1.1.3 as used in Internet2 Shibboleth Service Provider software 1.3.x before 1.3.4, and XMLTooling befor…
  from 0, < 3.0.2+dfsg1-2
• —CVE-2009-3475Internet2 Shibboleth Service Provider software 1.3.x before 1.3.3 and 2.x before 2.2.1, when using PKIX trust validation, does not properly…
  from 0, < 3.0.2+dfsg1-2
• —CVE-2009-3474opensaml shibboleth-sp - potential code execution
  from 0, < 1.3f.dfsg1-2+etch1
• —CVE-2009-3474opensaml shibboleth-sp - potential code execution
  from 0, < 3.0.2+dfsg1-2