[SECURITY] [DLA 290-2] opensaml2 security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 290-2] opensaml2 security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Mon, 10 Aug 2015 23:01:14 +0200 (CEST)
Message-id: <[🔎] alpine.DEB.2.02.1508102259400.26571@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : opensaml2
Version        : 2.3-2+squeeze2
CVE ID         : CVE-2015-0851

It was discovered that opensaml2, a Security Assertion Markup Language
library, needed to be rebuilt against a fixed version of the xmltooling
package due to its use of macros vulnerable to CVE-2015-0851 as fixed in
the DSA 3321-1 update.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQJ8BAEBCgBmBQJVyREaXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5
NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hHL9oP/1Y0WPS7gOTQOp/zBGHatj03
IZVz9HVyBbfpEpU45Jp2Ntgys0MnFiuzE7u3WI4/GbPXoJGC4qm478ysjY93pDFM
bDLAVUBC2UfUv8raZliYH5nM0OyqkLWYuv5ECWcrAvfBNv7uEkC1In+LIL5dxKaT
rLasLR5ICLTUjvvr20xHKbnP2dx5EBjvb6P4FKHVh3hC8fbW/2/BMT637Ug9Mzpt
BQfV77Ol/GuCVE723U+8Cz0rcVMDq+Zd4XlkCi5KRGIodRPCKicD+Ulk8ADXZ8hu
TJdydeenQCikgrzy3NjEo4kS8SqXzdE0706v2H4HsKhTCrzim8G2EJQKqqAaITzK
79P6QBe5qFUSkNIUbPvDi+jDJodA/SaPQRYe5I4N4LheJHNOHfp3cTrf6np8vS7A
8v13L054L6B1py9QGwfB61ei7XaEwCOHltA3r5UrNGoSH12Jw5s3kQUNhHsfOsit
ce7ANVtYL+emesD7azaO0vVyWzQvJXa5WU+YERTAZ7RRt51ZG5sr8sl/PMoOFRnS
5TljMTmFB7QuCucC015V8LXHSILdH6A6QrfwjzpS9XbZvEFW7eAJwlVmIfyR+rMD
T22THLz8in9Xtco8tjntRigz22ihLKGsKWWZj5rLiYl9aFslDOJsa9/67sXzyDY+
QwSc7jm2PCH7RHnvTzEa
=WB6+
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 290-1] xmltooling security update
Next by Date: [SECURITY] [DLA 291-1] libidn security update
Previous by thread: [SECURITY] [DLA 290-1] xmltooling security update
Next by thread: [SECURITY] [DLA 291-1] libidn security update
Index(es):
- Date
- Thread