Forums | Mahara Community

Security Announcements /
Security issue relating to the third-party library SimpleSAMLPHP <18.10.5, <19.04.4, <19.10.2


This topic is closed. Only moderators and the group administrators can post new replies.
Kristina Hoeppner's profile picture
Posts: 4252

04 March 2020, 18:51

Two security issues have been resolved for SimpleSAMLPHP that relate to information disclosure and log injection. A third one, relating to cross-site scripting in error reports, is also fixed by the latest update:

All supported versions of Mahara now use SimpleSAMLPHP 1.18.4.

Get the latest releases from our Git repository. You can also download them from Launchpad:

1 result