HCE2-SA-2026-0066 Critical HCE 2.0 Security Fix(es): A denial of service vulnerability exists in the lasso_provider_verify_saml_signature functionality of Entr_39;ouvert Lasso 2.5.1. A specially crafted SAML response can lead to a denial of service. An attacker can send a malformed SAML response to trigger this vulnerability. (CVE-2025-46404) A type confusion vulnerability exists in the lasso_node_impl_init_from_xml functionality of Entr_39;ouvert Lasso 2.5.1 and 2.8.2. A specially crafted SAML response can lead to an arbitrary code execution. An attacker can send a malformed SAML response to trigger this vulnerability. (CVE-2025-47151) A denial of service vulnerability exists in the lasso_node_init_from_message_with_format functionality of Entr_39;ouvert Lasso 2.5.1. A specially crafted SAML response can lead to a memory depletion, resulting in denial of service. An attacker can send a malformed SAML response to trigger this vulnerability. (CVE-2025-46784) A denial of service vulnerability exists in the g_assert_not_reached functionality of Entr_39;ouvert Lasso 2.5.1 and 2.8.2. A specially crafted SAML assertion response can lead to a denial of service. An attacker can send a malformed SAML response to trigger this vulnerability. (CVE-2025-46705) HCE 2.0 java-lasso-2.7.0-2.hce2.x86_64.rpm lasso-2.7.0-2.hce2.x86_64.rpm lasso-devel-2.7.0-2.hce2.x86_64.rpm lasso-help-2.7.0-2.hce2.x86_64.rpm perl-lasso-2.7.0-2.hce2.x86_64.rpm python3-lasso-2.7.0-2.hce2.x86_64.rpm java-lasso-2.7.0-2.hce2.aarch64.rpm lasso-2.7.0-2.hce2.aarch64.rpm lasso-devel-2.7.0-2.hce2.aarch64.rpm lasso-help-2.7.0-2.hce2.aarch64.rpm perl-lasso-2.7.0-2.hce2.aarch64.rpm python3-lasso-2.7.0-2.hce2.aarch64.rpm