Uploaded image for project: 'mod-login-saml'
  1. mod-login-saml
  2. MODLOGSAML-65

Create mod-login-saml security release

    XMLWordPrintable

Details

    • CP: Non-roadmap backlog
    • 1
    • Core: Platform
    • R2 2021

    Description

      Overview

      For 2020 Q2 it was decided to make a maintenance release, e.g. upgrade to RMB v31, etc. The expectation was that another release would be made once several security-related problems have been addressed.

      TestRail: Results

        Attachments

          Issue Links

            is blocked by

            Bug - A problem which impairs or prevents the functions of the product. MODLOGSAML-50 Fix security vulnerability reported in pac4j-saml < 3.8.3

            • P2 - normal priority level, must be included in the current development cycle
            • Closed

            Bug - A problem which impairs or prevents the functions of the product. MODLOGSAML-58 Arbitrary URL Redirection in SAML Response

            • P2 - normal priority level, must be included in the current development cycle
            • Closed

            Bug - A problem which impairs or prevents the functions of the product. MODLOGSAML-59 Umbrella: Cross-Site Request Forgery (CSRF) in SSO Flow

            • P2 - normal priority level, must be included in the current development cycle
            • Closed

            Activity

              People

                cmcnally Craig McNally
                cmcnally Craig McNally
                Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:

                  TestRail: Runs

                    TestRail: Cases