[HIGH] Signature validation bypass (SAML 1.1)

PKSA-sbzp-sfcv-rv5g CVE-2017-18122 GHSA-j4qf-3w33-8cgc

Affected package: simplesamlphp/simplesamlphp

Affected version: <1.14.17

Reported by:
GitHub, FriendsOfPHP/security-advisories