opensaml2_2.4.3-1~bpo60+1_i386.changes is NEW
(new) libsaml2-dev_2.4.3-1~bpo60+1_i386.deb extra libdevel
Security Assertion Markup Language library (development)
OpenSAML is an open source implementation of the OASIS Security Assertion
Markup Language Specification. It contains a set of open source C++ classes
that support the SAML 1.0, 1.1, and 2.0 specifications.
.
This package contains the headers and other necessary files to build
applications or libraries that use or extend the OpenSAML library.
(new) libsaml2-doc_2.4.3-1~bpo60+1_all.deb extra doc
Security Assertion Markup Language library (API docs)
OpenSAML is an open source implementation of the OASIS Security Assertion
Markup Language Specification. It contains a set of open source C++ classes
that support the SAML 1.0, 1.1, and 2.0 specifications.
.
This package contains the OpenSAML library API documentation generated
by Doxygen.
(new) libsaml7_2.4.3-1~bpo60+1_i386.deb extra libs
Security Assertion Markup Language library (runtime)
OpenSAML is an open source implementation of the OASIS Security Assertion
Markup Language Specification. It contains a set of open source C++ classes
that support the SAML 1.0, 1.1, and 2.0 specifications.
.
This package contains the files necessary for running applications that
use the OpenSAML library.
(new) opensaml2-schemas_2.4.3-1~bpo60+1_all.deb extra text
Security Assertion Markup Language library (XML schemas)
OpenSAML is an open source implementation of the OASIS Security Assertion
Markup Language Specification. It contains a set of open source C++ classes
that support the SAML 1.0, 1.1, and 2.0 specifications.
.
This package contains the XML schema files used by the OpenSAML library.
(new) opensaml2-tools_2.4.3-1~bpo60+1_i386.deb extra text
Security Assertion Markup Language command-line tools
OpenSAML is an open source implementation of the OASIS Security Assertion
Markup Language Specification. It contains a set of open source C++ classes
that support the SAML 1.0, 1.1, and 2.0 specifications.
.
This package contains samlsign, a command-line tool for signing and
verifying SAML assertions.
(new) opensaml2_2.4.3-1~bpo60+1.debian.tar.gz extra libs
(new) opensaml2_2.4.3-1~bpo60+1.dsc extra libs
(new) opensaml2_2.4.3.orig.tar.gz extra libs
Changes: opensaml2 (2.4.3-1~bpo60+1) squeeze-backports; urgency=high
.
* Backport to stable.
* Make removal of the Doxygen-installed jquery.js file conditional on
its existence, since some versions of Doxygen don't install it.
.
opensaml2 (2.4.3-1) unstable; urgency=high
.
* Set urgency to high for security fix.
* New upstream release.
- SECURITY: Fix vulnerability to a "wrapping attack" that could allow
a remote, unauthenticated attacker to craft messages that can be
successfully verified but contain arbitrary content. This may allow
an attacker to subvert the security of software using OpenSAML and
supply an unauthenticated login identity and data under the guise of
a trusted issuer. (CVE-2011-1411)
- Fix unmarshalling of RespondWith element
- Make library init routines idempotent
* Update the Debian-provided samlsign.1 man page for new flags supported
by the upstream utility.
* Update debian/watch for the new upstream distribution location.
* Update standards version to 3.9.2 (no changes required).
.
opensaml2 (2.4.1-1) unstable; urgency=low
.
* New upstream release.
- Don't download remote metadata if it hasn't changed
- Verify that fetched metadata is valid, even after filters, before
overwriting the previous metadata. Improve metadata downloads.
- Logging improvements for OpenSAML.MetadataProvider.XML
- Add keywords/tags element to UIInfo extension and disco feed
- Fix overuse of InclusivePrefixes list when signing
- Do not use cacheDuration for validity
- Fix memory leaks
- Fix crash when encrypting unmarshalled object
- Resolve sibling EncryptedKey element for decryption
- Add xml prefix on newly-created xml:lang attributes
- Duplication and line feed fixes for DiscoFeed.
- Fix reload interval backoff after reload failures
- Strip whitespace from SAMLRequest URL parameter values
* Change package names for the upstream SONAME change.
* Install the new upstream pkg-config file in libsaml2-dev.
* Build-depend on xmltooling 1.4 or later.
* Force build dependency on xml-security-c 1.6 or later for consistent
build results.
* Add build dependency on pkg-config, which upstream now uses to find
the SSL libraries.
* Add build dependency on graphviz for better API documentation.
* Replace the version of jQuery installed by Doxygen in the
documentation package with a symlink to the version supplied by the
Debian package and add a dependency.
* Update to debhelper compatibility level V8.
- Use the autotools-dev debhelper module for config.{sub,guess}.
- Use debhelper rule minimization.
* Update debian/copyright to the current DEP-5 specification.
* Change to Debian source format 3.0 (quilt). Force a single Debian
patch for simplicity since the packaging is maintained in Git using
branches, and include a patch header explaining why.
* Update standards version to 3.9.1 (no changes required).
Override entries for your package:
Announcing to debian-backports-changes@lists.debian.org
Your package contains new components which requires manual editing of
the override file. It is ok otherwise, so please be patient. New
packages are usually added to the override file about once a week.
You may have gotten the distribution wrong. You'll get warnings above
if files already exist in other distributions.
ist in other distributions.
Reply to: