CVSS Base Vector:
The remote host is missing an update for the 'simplesamlphp'
Linux Distribution Package(s) announced via the DSA-4560-1 advisory.
Checks if a vulnerable Linux Distribution Package version is present on the target host.
It was discovered that in SimpleSAMLphp, an implementation of the
SAML 2.0 protocol, it was possible to circumvent XML signature
verification on SAML messages.
'simplesamlphp' Linux Distribution Package(s) on Debian Linux.
For the oldstable distribution (stretch), this problem has been fixed
in version 1.14.11-1+deb9u2.
For the stable distribution (buster), this problem has been fixed in
We recommend that you upgrade your simplesamlphp Linux Distribution Packages.
Linux Distribution Package
Debian Local Security Checks
Find and Fix this Vulnerability:
Mageni can help you to find out if you have this or more vulnerabilities exposing you to hackers, ransomware and malware: Download Mageni's Free Edition
NVD CVE ID: