Shibboleth Service Provider Security Advisory (12 January 2018)
started a topic
almost 3 years ago
The Shibboleth project has recently advised of a critical security issue involving the Shibboleth Service Provider. An updated version of the Service Provider software is available which corrects this issue. Recommendations
Update to the latest version of the Shibboleth Service Provider Software for your operating system
Linux installations relying on official RPM packages can upgrade to the latest package versions to obtain the fix
Windows systems can upgrade to the latest Service Provider release (V220.127.116.11) which contains the appropriately updated libraries.