Accepted shibboleth-sp2 2.3+dfsg-1~bpo50+1 (source i386 all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 11 Nov 2009 17:18:50 -0800
Source: shibboleth-sp2
Binary: libapache2-mod-shib2 libshibsp4 libshibsp-dev libshibsp-doc shibboleth-sp2-schemas
Architecture: source i386 all
Version: 2.3+dfsg-1~bpo50+1
Distribution: lenny-backports
Urgency: high
Maintainer: Debian Shib Team <pkg-shibboleth-devel@lists.alioth.debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description:
libapache2-mod-shib2 - Federated web single sign-on system (Apache module)
libshibsp-dev - Federated web single sign-on system (development)
libshibsp-doc - Federated web single sign-on system (API docs)
libshibsp4 - Federated web single sign-on system (runtime)
shibboleth-sp2-schemas - Federated web single sign-on system (schemas)
Closes: 555608
Changes:
shibboleth-sp2 (2.3+dfsg-1~bpo50+1) lenny-backports; urgency=low
.
* Backport to stable.
* Build against libxerces-c2-dev instead of libxerces-c-dev.
.
shibboleth-sp2 (2.3+dfsg-1) unstable; urgency=high
.
[ Russ Allbery ]
* Urgency set to high for security fix.
* New upstream release.
- SECURITY: Partial fix for improper handling of URLs that could be
abused for script injection and other cross-site scripting attacks.
The complete fix also requires newer xmltooling and opensaml2
packages. (Closes: #555608, CVE-2009-3300)
- Avoid shibd crash on dead memcache server.
- Pass the affiliation name to the session initiator.
- Correctly handle a bogus ACS.
- Allow overriding the URL that's passed to the DS.
- Add schema types for new attribute decoders introduced in 2.2.
- Handle success with partial logout in the logout UI code.
- Fix POST data preservation with empty parameters and empty forms.
- Fix SAML 1 specification of attributes in the query plugin.
- Shorten ePTId-type persistent identifiers.
- Use an ID rather than a whole doc reference for generated metadata.
- Fix spelling of scopeDelimiter in the configuration parser, making
the code and documentation match the schema.
* Rename library package for upstream SONAME bump.
* Tighten build and package dependencies on xmltooling and opensaml2 to
require the versions with the security fix.
* Fix watch file for the new version mangling.
* Improve documentation of DAEMON_OPTS in /etc/default/shibd.
* Remove unnecessary patches to upstream files regenerated during the
build from the source package diff.
.
[ Faidon Liambotis ]
* Run make install with NOKEYGEN=1 and stop rm-ing generated
certificates. Fixes FTBFS.
.
[ Ferenc Wagner ]
* Run shibd as non-root.
Checksums-Sha1:
decf07c8bdfebe012c69b4be85e387b7eb55a6d6 1669 shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
a15ac5bf6c65a26e44a8b5be2fc194edc6574067 807364 shibboleth-sp2_2.3+dfsg.orig.tar.gz
d7780c679059f0bec9a972d2dcdd84c4d8ea91c2 17698 shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
94c85a5405ad604114c47774b725bbec58a4b943 223032 libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
ecdf1fa8cbcc30f54d038c2149e62c5143103448 951298 libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
4179244106784972fc12b6da88736ce95a17a4ce 43028 libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
30b8c20cd3e6950369a7c1d68e7535f2c22bdbc3 292618 libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
51e2f47893ba2d17537cd05bcd8f549e552cb75c 18330 shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
Checksums-Sha256:
9ee8cfd922725761dc5e7f349610ccec5714925fa0e57fae562bd67142446bed 1669 shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
5a19c7078dd67d42a97630ea82096bdeb0f09d3a070e67cf7cea9281487e1e88 807364 shibboleth-sp2_2.3+dfsg.orig.tar.gz
83d2bab4c4ff28a383211b9c05efe2d23918afd5eca2d60274675a2b00973ef1 17698 shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
f9b02345628f4c52d4abce639af572e1067ef93847c75e1bb5dc264b2ab73bfa 223032 libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
c17a0457acd8d989d2cacfc0abe9c3ac5f1e11eb644d37a5f4ffb63a33e86c42 951298 libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
31c8070fb5267fc84adcbc030b1e30cdddaa3e4a8e26bc535c6dcf19d245f3b0 43028 libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
dbb8489cf8d9370fe17535228779ef2c7939cfec81d745b16c6263a92c1ecb30 292618 libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
5c02de367fc868f94f9eddfe006feae236f26c65139b7bcb3680e972b073ef93 18330 shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
Files:
df708ba791998fd073f387d77bf6e62c 1669 web extra shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
6d674cfe5862654ab05831a4a5fc2d2b 807364 web extra shibboleth-sp2_2.3+dfsg.orig.tar.gz
e117a0a596b9557eb90c4125b8049721 17698 web extra shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
cf224655d057f61b48a78e35c12b7385 223032 httpd extra libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
14b54bdfb76cb791b29790b1b022ee1f 951298 libs extra libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
6422b362ef224512db1cb2142f97e97a 43028 libdevel extra libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
b6a9522d75cc259f35ab665de619d913 292618 doc extra libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
2c9e607891d118b2e5fd246f879a9f26 18330 text extra shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkr7ZRcACgkQ+YXjQAr8dHYbsQCgv0aUrhH2O0mz5koWLej8nTUv
TkQAoNIu9ppUWI5s9zo0paDiiPJbIRrT
=Kpd9
-----END PGP SIGNATURE-----
Accepted:
libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
to pool/main/s/shibboleth-sp2/libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
to pool/main/s/shibboleth-sp2/libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
to pool/main/s/shibboleth-sp2/libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
to pool/main/s/shibboleth-sp2/libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
to pool/main/s/shibboleth-sp2/shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
to pool/main/s/shibboleth-sp2/shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
to pool/main/s/shibboleth-sp2/shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
shibboleth-sp2_2.3+dfsg.orig.tar.gz
to pool/main/s/shibboleth-sp2/shibboleth-sp2_2.3+dfsg.orig.tar.gz
Reply to: