CVE-2016-10149

XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attackers to read arbitrary files via a crafted SAML XML request or response.

Date published : 2017-03-24

http://www.securityfocus.com/bid/97692

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850716