Re: squeeze update of shibboleth-sp2?

boleth-sp2-2.3.1+dfsg/debian/changelog @@ -1,3 +1,11 @@ +shibboleth-sp2 (2.3.1+dfsg-5+deb6u1) squeeze-lts; urgency=high + + * Backport security fix from V2.5.4 for CVE-2015-2684: authenticated +denial of service vulnerability that results in a crash on certain +kinds of malformed SAML messag

Re: squeeze update of xmltooling?

tooling (1.3.3-2+deb6u1) squeeze-lts; urgency=high + + * Apply security fix from 1.5.5 for CVE-2015-0851 DoS (Closes: #793855): +Shibboleth SP software crashes on well-formed but invalid XML + + -- Ferenc Wagner Mon, 03 Aug 2015 13:25:11 +0200 + xmltooling (1.3.3-2) unstable; urgency=lo