On mer., 2012-12-19 at 22:32 +0100, Xavier Guimard wrote: > Hi all, > > I've prepared the attached-patch for the #696329 security bug. It is > ready to be stored in lemonldap-ng testing package. Stable version is > not vulnerable since SAML exists only in versions >=1.0 > > Can you say to me if it's good ? At first sight it looks good (well, it's the upstream patch anyway, isn't it?). But since it needs to go to t-p-u you need to reach the approval from the release team, not the security team (there's no testing-security) Regards, -- Yves-Alexis
Attachment:
signature.asc
Description: This is a digitally signed message part