v1.12.4
📦 saml-toolkit
🐛 2 fixes
Summary
This patch release addresses critical security vulnerabilities related to SAML authentication bypass and potential Denial of Service attacks.
🐛 Bug Fixes
- Fixed SAML authentication bypass vulnerability (CVE-2025-25291, CVE-2025-25292) related to Signature Wrapping attack due to parser differential.
- Fixed potential Denial of Service (DoS) vulnerability (CVE-2025-25293) caused by abusing compressed messages.