Candidate: CVE-2012-0908
PublicDate: 2012-01-24 18:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0908
Description:
 Cross-site scripting (XSS) vulnerability in logout.php in SimpleSAMLphp
 1.8.1 and possibly other versions before 1.8.2 allows remote attackers to
 inject arbitrary web script or HTML via the link_href parameter.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_simplesamlphp:
upstream_simplesamlphp: released (1.8.2-1)
hardy_simplesamlphp: DNE
lucid_simplesamlphp: DNE
maverick_simplesamlphp: ignored (reached end-of-life)
natty_simplesamlphp: ignored (reached end-of-life)
oneiric_simplesamlphp: ignored (reached end-of-life)
precise_simplesamlphp: not-affected (1.8.2-1)
quantal_simplesamlphp: not-affected (1.9.0~rc2-1)
raring_simplesamlphp: not-affected (1.9.0~rc2-1)
devel_simplesamlphp: not-affected (1.9.0~rc2-1)