...
Dependency | Updated from version | Updated to version | Description |
---|---|---|---|
bouncycastle.bcprov | bouncycastle.bcprov-jdk15@140 | org.bouncycastle.bcprov-jdk15to18@1.70 | Dependency in Kerberos component of Kantega SSO Enterprise, org.simplericity.serberuhs. Our internal managed fork of serberuhs contains the new updates. |
org.bouncycastle.bcpkix | bcpkix-jdk15on@1.59 | org.bouncycastle.bcpkix-jdk15to18@1.70 | Dependency in SAML component of Kantega SSO Enterprise |
Security vulnerabilities
...
patched
The dependency patching resolved the following vulnerabilities:
...
Setup wizard did no allow characters outside ISO-8859-1Status colour Red title Saml/oidc
Could not abort automatic redirect on login page with esc buttonStatus colour Red title Saml/oidc
Managed groups under Group Memberships had inconsistencies and didn’t work properlyStatus colour Red title saml/oidc
Inconsistent login test result status regarding user not foundStatus colour Yellow title saml
Incorrect summary on Kerberos test page when Kerberos is disabled but is still enabled for users in a certain user group or directory.Status colour Blue title kerberos Update of config warning flag gave wrong link path to Configuration status from certain pages
Security
...
vulnerabilities patched
Audit and update NPM packages and one maven dependency. The following vulnerabilities were patched:
...