XML Security Library Information for VU#466161
XML signature HMAC truncation authentication bypass
- Vendor Information Help Date Notified:
- Statement Date:
- Date Updated: 10 Jul 2009
No statement is currently available from the vendor regarding this vulnerability.
The library is affected and the patched release will be available on July 14 at http://www.aleksey.com/xmlsec/downloads.html
There are no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.