Errata overview
Errata ID 398
Date 2017-02-16
Source package python-pysaml2
Fixed in version 2.4.0-2.4.201702142305
This update addresses the following issues:
* python-pysaml2 did not correctly sanitize the XML messages it handled.
  This allowed a remote attacker to perform XML External Entity attacks,
  leading to a wide range of exploits (CVE-2016-10127)
Additional notes
CVE ID CVE-2016-10127
UCS Bug number #43393