Versions Compared

Old Version 9

changes.mady.by.user Elias Brattli Sørensen

Saved on

compared with

New Version 10

changes.mady.by.user Elias Brattli Sørensen

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Dependency

Updated from version

Updated to version

Description

bouncycastle.bcprov

bouncycastle.bcprov-jdk15@140

org.bouncycastle.bcprov-jdk15to18@1.70

Dependency in Kerberos component of Kantega SSO Enterprise, org.simplericity.serberuhs. Our internal managed fork of serberuhs contains the new updates.

org.bouncycastle.bcpkix

bcpkix-jdk15on@1.59

org.bouncycastle.bcpkix-jdk15to18@1.70

Dependency in SAML component of Kantega SSO Enterprise

Security vulnerabilities

...

patched

The dependency patching resolved the following vulnerabilities:

...

  • Status
    colourRed
    titleSaml/oidc
    Setup wizard did no allow characters outside ISO-8859-1

  • Status
    colourRed
    titleSaml/oidc
    Could not abort automatic redirect on login page with esc button

  • Status
    colourRed
    titlesaml/oidc
    Managed groups under Group Memberships had inconsistencies and didn’t work properly

  • Status
    colourYellow
    titlesaml
    Inconsistent login test result status regarding user not found

  • Status
    colourBlue
    titlekerberos
    Incorrect summary on Kerberos test page when Kerberos is disabled but is still enabled for users in a certain user group or directory.

  • Update of config warning flag gave wrong link path to Configuration status from certain pages

Security

...

vulnerabilities patched

Audit and update NPM packages and one maven dependency. The following vulnerabilities were patched:

...