Candidate: CVE-2020-5407
PublicDate: 2020-05-13 17:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5407
 https://lists.apache.org/thread.html/r73af928cf64bebf78b7fa4bc56a5253273ec7829f5f5827f64c72fc7@%3Cissues.servicemix.apache.org%3E
 https://lists.apache.org/thread.html/ra19a4e7236877fe12bfb52db07b27ad72d9e7a9f5e27bba7e928e18a@%3Cdev.geode.apache.org%3E
 https://lists.apache.org/thread.html/rd99601fbca514f214f88f9e53fd5be3cfbff05b350c994b4ec2e184c@%3Cdev.geode.apache.org%3E
 https://tanzu.vmware.com/security/cve-2020-5407
Description:
 Spring Security versions 5.2.x prior to 5.2.4 and 5.3.x prior to 5.3.2
 contain a signature wrapping vulnerability during SAML response validation.
 When using the spring-security-saml2-service-provider component, a
 malicious user can carefully modify an otherwise valid SAML response and
 append an arbitrary assertion that Spring Security will accept as valid.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [8.8 HIGH]


Patches_libspring-security-2.0-java:
upstream_libspring-security-2.0-java: needs-triage
precise_libspring-security-2.0-java: ignored (out of standard support)
precise/esm_libspring-security-2.0-java: DNE
trusty_libspring-security-2.0-java: ignored (out of standard support)
trusty/esm_libspring-security-2.0-java: DNE
xenial_libspring-security-2.0-java: DNE
bionic_libspring-security-2.0-java: DNE
eoan_libspring-security-2.0-java: DNE
focal_libspring-security-2.0-java: DNE
devel_libspring-security-2.0-java: DNE