Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Fedora 23: Security Advisory for Ipsilon Authentication Issues

fedora
Calendar Grey November 8, 2015
Dist Fedora Esm H88
The latest Fedora patch for Ipsilon tackles several security vulnerabilities, notably the absence of proper authorization verifications and implementations of backported updates.
Rebased to 1.1.1 release ---- ipsilon-1.0.0-5.fc23 - Backported some patches - Fix for CVE-2015-5215/CVE-2015-5216/CVE-2015-5217 ipsilon-1.0.0-5.fc22 - Backported some patches - F...

Summary

Ipsilon is a multi-protocol Identity Provider service. Its function is to

bridge authentication providers and applications to achieve Single Sign On

and Federation.

Update Information:

Rebased to 1.1.1 release ---- ipsilon-1.0.0-5.fc23 - Backported some patches - Fix for CVE-2015-5215/CVE-2015-5216/CVE-2015-5217 ipsilon-1.0.0-5.fc22 - Backported some patches - Fix for CVE-2015-5215/CVE-2015-5216/CVE-2015-5217

Change Log

References


[ 1 ] Bug #1271530 - CVE-2015-5301 ipsilon: missing user authorization check when deleting a service provider https://bugzilla.redhat.com/show_bug.cgi?id=1271530

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update ipsilon' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: ipsilon
Product: Fedora 23
Version: 1.1.1
Release: 2.fc23
Summary: An Identity Provider Server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.