We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
The following vulnerabilities have been disclosed, which impact users leveraging the SAML connector:
Signature Validation Bypass (CVE-2020-15216): GHSA-q547-gmf8-8jr7
encoding/xml instabilities:
encoding/xml
Immediately update to Dex v2.27.0.
There are no known workarounds.
jupenur Analyst
ericchiang Analyst
justaugustus Analyst
sagikazarmark Analyst
Impact
The following vulnerabilities have been disclosed, which impact users leveraging the SAML connector:
Signature Validation Bypass (CVE-2020-15216): GHSA-q547-gmf8-8jr7
encoding/xmlinstabilities:Patches
Immediately update to Dex v2.27.0.
Workarounds
There are no known workarounds.