-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Matthew Vernon uploaded new packages for shibboleth-sp which fixed the following security problems:
CVE-2015-2684 A denial of service vulnerability was found in the Shibboleth (a federated identity framework) Service Provider. When processing certain malformed SAML messages generated by an authenticated attacker, the daemon could crash. For the wheezy-backports distribution the problems have been fixed in version 2.5.3+dfsg-2~bpo70+1. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Processed by Mailcrypt 3.5.9 <http://mailcrypt.sourceforge.net/> iQIcBAEBCgAGBQJVLPd/AAoJEBL00hyPamPIMVoP/R+8cuMtfB7ymeN8TpqkhSYg HKH2G38qRXWntSNHIPL/K/Yl/OYMxTgh3qbOQQe7DdyE4DTY+s1IINU6e/ubhldH 1dtrl/OFX4+j1rEevuxs6/YC87jI1YojIRRhZEU6kE/Wc32YXqclDyCgMpIrzu3S hjXVBCGaMZ9TQxnc4kdVOj7Cpr3InIMjI9bFuhnKP+65Eq+9EVwFyNgegO3o/AzL NrVj1RRqaCjfGpf+aQJXCupUs6vxVx+81m645mVEShGc9Bd3BaGhM72AYKME/u4a 48xQYJ6YZXwYRh5JuUezud+Er7IPzBRVzlmSMgy+Xf0beitfw4HM+egYuhVLqGvd cJ/EKrMg3QxUL+S3wcwDiJfPIoF6820LL2K1AR+BhzsCU8tx4S863futlWwaqJPk SLV3ZsMgVIKv6YjnhztbFhuguuhTLt8mYKh4zHjhOJ+4ad4BqM4VW9j4nmKJDNPn +3UT2pdGSA9uQOk2ae0s7c5gS5Sihh9TrWRS37zgozDvIxKRofAPtIH0WfaAjiEB L8WutN3VhE+ruZIvb5kj2mX1RAXPpawYSsgtd6k/jibBcsbILCGMGqzTKktz7UwL +jG4EOLeceaVZKCVe6BH6iuEQz7ECOd3CWWgGW/w8Kg0eyPHEo34B4gD2c4CoxFR 0EXL4P5gCBsE9TUdsNJ7 =BkMJ -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: https://lists.debian.org/[email protected]
