[HIGH] The SimpleSAMLphp SAML2 library incorrectly verifies signatures for HTTP-Redirect binding

PKSA-f546-f49f-cw9s CVE-2025-27773 GHSA-46r4-f8gj-xg56

Affected package: simplesamlphp/saml2-legacy

Affected version: <=4.16.15

Reported by:
GitHub