Package: simplesamlphp / 1.14.11-1+deb9u1

CVE-2017-18121.patch Patch series | download
1
2
3
4
5
6
7
8
9
10
11
diff -ur simplesamlphp-1.14.11.orig/modules/consentAdmin/templates/consentadmin.php simplesamlphp-1.14.11/modules/consentAdmin/templates/consentadmin.php
--- simplesamlphp-1.14.11.orig/modules/consentAdmin/templates/consentadmin.php	2016-12-12 17:08:36.000000000 +0100
+++ simplesamlphp-1.14.11/modules/consentAdmin/templates/consentadmin.php	2018-03-01 20:26:04.451586805 +0100
@@ -131,6 +131,6 @@
 		
 		<h2>Logout</h2>
 
-			<p><a href="<?php echo \SimpleSAML\Utils\HTTP::getSelfURL() . '?logout'; ?>">Logout</a></p>
+			<p><a href="<?php echo SimpleSAML_Module::getModuleURL('consentAdmin/consentAdmin.php', array('logout' => 1)); ?>">Logout</a></p>
 		
 <?php $this->includeAtTemplateBase('includes/footer.php');