ELSA-2021-2989

ULN >
Oracle Linux Errata repository >
ELSA-2021-2989

ELSA-2021-2989 - lasso security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2021-08-02

Description

[2.5.1-8]
- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
vulnerability when parsing SAML responses

[2.5.1-7]
- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
vulnerability when parsing SAML responses

[2.5.1-6]
- Resolves: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
vulnerability when parsing SAML responses

Related CVEs

CVE-2021-28091

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	lasso-2.5.1-8.el7_9.src.rpm	c0d9858803fded9e93097518cc7207f8368bdd3f3d1a1476572a5c11bdd93540	-	ol7_aarch64_latest
	lasso-2.5.1-8.el7_9.src.rpm	c0d9858803fded9e93097518cc7207f8368bdd3f3d1a1476572a5c11bdd93540	-	ol7_aarch64_optional_latest
	lasso-2.5.1-8.el7_9.src.rpm	c0d9858803fded9e93097518cc7207f8368bdd3f3d1a1476572a5c11bdd93540	-	ol7_aarch64_u9_patch
	lasso-2.5.1-8.el7_9.aarch64.rpm	94f7f1e6606fb97a2efd6fe4d49dacb46d9ce11438c8c1a57147df4af30c0b58	-	ol7_aarch64_latest
	lasso-2.5.1-8.el7_9.aarch64.rpm	94f7f1e6606fb97a2efd6fe4d49dacb46d9ce11438c8c1a57147df4af30c0b58	-	ol7_aarch64_u9_patch
	lasso-devel-2.5.1-8.el7_9.aarch64.rpm	7be30bafc469b68544b8802184d15eb53c20883b1fa62b90dcbe91d81b3767c4	-	ol7_aarch64_optional_latest
	lasso-python-2.5.1-8.el7_9.aarch64.rpm	c88a99aefa9253c9d93842f3b3ea46a08933cd928d3d1ea37f809f7ccbf5f340	-	ol7_aarch64_latest
	lasso-python-2.5.1-8.el7_9.aarch64.rpm	c88a99aefa9253c9d93842f3b3ea46a08933cd928d3d1ea37f809f7ccbf5f340	-	ol7_aarch64_u9_patch

Oracle Linux 7 (x86_64)	lasso-2.5.1-8.el7_9.src.rpm	c0d9858803fded9e93097518cc7207f8368bdd3f3d1a1476572a5c11bdd93540	-	ol7_x86_64_latest
	lasso-2.5.1-8.el7_9.src.rpm	c0d9858803fded9e93097518cc7207f8368bdd3f3d1a1476572a5c11bdd93540	-	ol7_x86_64_optional_latest
	lasso-2.5.1-8.el7_9.src.rpm	c0d9858803fded9e93097518cc7207f8368bdd3f3d1a1476572a5c11bdd93540	-	ol7_x86_64_u9_patch
	lasso-2.5.1-8.el7_9.i686.rpm	1b47008019fdca67df5edd6e0e7c7f9a821a64d2c008b85752de8b42c65a5af9	-	ol7_x86_64_latest
	lasso-2.5.1-8.el7_9.i686.rpm	1b47008019fdca67df5edd6e0e7c7f9a821a64d2c008b85752de8b42c65a5af9	-	ol7_x86_64_u9_patch
	lasso-2.5.1-8.el7_9.x86_64.rpm	b49c5c6030efaa42d32d0cf7d526ae3fd45c082935b677696e71be832bcef576	-	ol7_x86_64_latest
	lasso-2.5.1-8.el7_9.x86_64.rpm	b49c5c6030efaa42d32d0cf7d526ae3fd45c082935b677696e71be832bcef576	-	ol7_x86_64_u9_patch
	lasso-devel-2.5.1-8.el7_9.i686.rpm	fe390c59fc4c69d00710527be05db75fca37b7824cb54b05f01f77b268ddc051	-	ol7_x86_64_optional_latest
	lasso-devel-2.5.1-8.el7_9.x86_64.rpm	3a44107bcc859a8fc3cc2b36cffbaec587d27ed3d006d5e5e34790f43f43e9c9	-	ol7_x86_64_optional_latest
	lasso-python-2.5.1-8.el7_9.x86_64.rpm	adaa4f2a5f3559a1a8fdc49eb81a866018fa35900d22cac3d21c0cf411a61bdb	-	ol7_x86_64_latest
	lasso-python-2.5.1-8.el7_9.x86_64.rpm	adaa4f2a5f3559a1a8fdc49eb81a866018fa35900d22cac3d21c0cf411a61bdb	-	ol7_x86_64_u9_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691