Skip to content

Commit c5f02ff

Browse files
pitbulkpitbulk
committed
Prepare release 1.12.4
1 parent 24b69b5 commit c5f02ff

File tree

2 files changed

+11
-0
lines changed

2 files changed

+11
-0
lines changed

changelog.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,7 @@
11
# RubySaml Changelog
2+
### 1.12.4 (Mar 12, 2025)
3+
* Fix vulnerabilities: CVE-2025-25291, CVE-2025-25292: SAML authentication bypass via Signature Wrapping attack allowed due parser differential.
4+
* Fix vulnerability: CVE-2025-25293: Potential DOS abusing of compressed messages.
25

36
### 1.12.3 (Sep 10, 2024)
47
* Fix for critical vulnerability CVE-2024-45409: SAML authentication bypass via Incorrect XPath selector

lib/onelogin/ruby-saml/version.rb

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,13 @@
11
module OneLogin
22
module RubySaml
3+
<<<<<<< Updated upstream
34
VERSION = '1.12.3'
5+
=======
6+
<<<<<<< Updated upstream
7+
VERSION = '1.12.0'
8+
=======
9+
VERSION = '1.12.4'
10+
>>>>>>> Stashed changes
11+
>>>>>>> Stashed changes
412
end
513
end

0 commit comments

Comments
 (0)