Skip to content

Commit fa78136

Browse files
pitbulkpitbulk
committed
Missed reference
1 parent 6a7c040 commit fa78136

File tree

1 file changed

+3
-0
lines changed

1 file changed

+3
-0
lines changed

CHANGELOG.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -46,6 +46,9 @@
4646
* Add warning about the use of IdpMetadataParser class and SSRF
4747
* CI: Migrate from Travis to Github Actions
4848

49+
### 1.12.4 (Mar 12, 2025)
50+
* [#750](https://github.com/SAML-Toolkits/ruby-saml/pull/750) Fix vulnerabilities: CVE-2025-25291, CVE-2025-25292: SAML authentication bypass via Signature Wrapping attack allowed due parser differential. Fix vulnerability: CVE-2025-25293: Potential DOS abusing of compressed messages.
51+
4952
### 1.12.3 (Sep 10, 2024)
5053
* Fix for critical vulnerability CVE-2024-45409: SAML authentication bypass via Incorrect XPath selector
5154

0 commit comments

Comments
 (0)