[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted shibboleth-sp2 2.3+dfsg-1~bpo50+1 (source i386 all)



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 11 Nov 2009 17:18:50 -0800
Source: shibboleth-sp2
Binary: libapache2-mod-shib2 libshibsp4 libshibsp-dev libshibsp-doc shibboleth-sp2-schemas
Architecture: source i386 all
Version: 2.3+dfsg-1~bpo50+1
Distribution: lenny-backports
Urgency: high
Maintainer: Debian Shib Team <pkg-shibboleth-devel@lists.alioth.debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description: 
 libapache2-mod-shib2 - Federated web single sign-on system (Apache module)
 libshibsp-dev - Federated web single sign-on system (development)
 libshibsp-doc - Federated web single sign-on system (API docs)
 libshibsp4 - Federated web single sign-on system (runtime)
 shibboleth-sp2-schemas - Federated web single sign-on system (schemas)
Closes: 555608
Changes: 
 shibboleth-sp2 (2.3+dfsg-1~bpo50+1) lenny-backports; urgency=low
 .
   * Backport to stable.
   * Build against libxerces-c2-dev instead of libxerces-c-dev.
 .
 shibboleth-sp2 (2.3+dfsg-1) unstable; urgency=high
 .
   [ Russ Allbery ]
   * Urgency set to high for security fix.
   * New upstream release.
     - SECURITY: Partial fix for improper handling of URLs that could be
       abused for script injection and other cross-site scripting attacks.
       The complete fix also requires newer xmltooling and opensaml2
       packages.  (Closes: #555608, CVE-2009-3300)
     - Avoid shibd crash on dead memcache server.
     - Pass the affiliation name to the session initiator.
     - Correctly handle a bogus ACS.
     - Allow overriding the URL that's passed to the DS.
     - Add schema types for new attribute decoders introduced in 2.2.
     - Handle success with partial logout in the logout UI code.
     - Fix POST data preservation with empty parameters and empty forms.
     - Fix SAML 1 specification of attributes in the query plugin.
     - Shorten ePTId-type persistent identifiers.
     - Use an ID rather than a whole doc reference for generated metadata.
     - Fix spelling of scopeDelimiter in the configuration parser, making
       the code and documentation match the schema.
   * Rename library package for upstream SONAME bump.
   * Tighten build and package dependencies on xmltooling and opensaml2 to
     require the versions with the security fix.
   * Fix watch file for the new version mangling.
   * Improve documentation of DAEMON_OPTS in /etc/default/shibd.
   * Remove unnecessary patches to upstream files regenerated during the
     build from the source package diff.
 .
   [ Faidon Liambotis ]
   * Run make install with NOKEYGEN=1 and stop rm-ing generated
     certificates.  Fixes FTBFS.
 .
   [ Ferenc Wagner ]
   * Run shibd as non-root.
Checksums-Sha1: 
 decf07c8bdfebe012c69b4be85e387b7eb55a6d6 1669 shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
 a15ac5bf6c65a26e44a8b5be2fc194edc6574067 807364 shibboleth-sp2_2.3+dfsg.orig.tar.gz
 d7780c679059f0bec9a972d2dcdd84c4d8ea91c2 17698 shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
 94c85a5405ad604114c47774b725bbec58a4b943 223032 libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
 ecdf1fa8cbcc30f54d038c2149e62c5143103448 951298 libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
 4179244106784972fc12b6da88736ce95a17a4ce 43028 libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
 30b8c20cd3e6950369a7c1d68e7535f2c22bdbc3 292618 libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
 51e2f47893ba2d17537cd05bcd8f549e552cb75c 18330 shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
Checksums-Sha256: 
 9ee8cfd922725761dc5e7f349610ccec5714925fa0e57fae562bd67142446bed 1669 shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
 5a19c7078dd67d42a97630ea82096bdeb0f09d3a070e67cf7cea9281487e1e88 807364 shibboleth-sp2_2.3+dfsg.orig.tar.gz
 83d2bab4c4ff28a383211b9c05efe2d23918afd5eca2d60274675a2b00973ef1 17698 shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
 f9b02345628f4c52d4abce639af572e1067ef93847c75e1bb5dc264b2ab73bfa 223032 libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
 c17a0457acd8d989d2cacfc0abe9c3ac5f1e11eb644d37a5f4ffb63a33e86c42 951298 libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
 31c8070fb5267fc84adcbc030b1e30cdddaa3e4a8e26bc535c6dcf19d245f3b0 43028 libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
 dbb8489cf8d9370fe17535228779ef2c7939cfec81d745b16c6263a92c1ecb30 292618 libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
 5c02de367fc868f94f9eddfe006feae236f26c65139b7bcb3680e972b073ef93 18330 shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
Files: 
 df708ba791998fd073f387d77bf6e62c 1669 web extra shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
 6d674cfe5862654ab05831a4a5fc2d2b 807364 web extra shibboleth-sp2_2.3+dfsg.orig.tar.gz
 e117a0a596b9557eb90c4125b8049721 17698 web extra shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
 cf224655d057f61b48a78e35c12b7385 223032 httpd extra libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
 14b54bdfb76cb791b29790b1b022ee1f 951298 libs extra libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
 6422b362ef224512db1cb2142f97e97a 43028 libdevel extra libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
 b6a9522d75cc259f35ab665de619d913 292618 doc extra libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
 2c9e607891d118b2e5fd246f879a9f26 18330 text extra shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAkr7ZRcACgkQ+YXjQAr8dHYbsQCgv0aUrhH2O0mz5koWLej8nTUv
TkQAoNIu9ppUWI5s9zo0paDiiPJbIRrT
=Kpd9
-----END PGP SIGNATURE-----


Accepted:
libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
  to pool/main/s/shibboleth-sp2/libapache2-mod-shib2_2.3+dfsg-1~bpo50+1_i386.deb
libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
  to pool/main/s/shibboleth-sp2/libshibsp-dev_2.3+dfsg-1~bpo50+1_i386.deb
libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
  to pool/main/s/shibboleth-sp2/libshibsp-doc_2.3+dfsg-1~bpo50+1_all.deb
libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
  to pool/main/s/shibboleth-sp2/libshibsp4_2.3+dfsg-1~bpo50+1_i386.deb
shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
  to pool/main/s/shibboleth-sp2/shibboleth-sp2-schemas_2.3+dfsg-1~bpo50+1_all.deb
shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
  to pool/main/s/shibboleth-sp2/shibboleth-sp2_2.3+dfsg-1~bpo50+1.diff.gz
shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
  to pool/main/s/shibboleth-sp2/shibboleth-sp2_2.3+dfsg-1~bpo50+1.dsc
shibboleth-sp2_2.3+dfsg.orig.tar.gz
  to pool/main/s/shibboleth-sp2/shibboleth-sp2_2.3+dfsg.orig.tar.gz


Reply to: