-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-12890 2011-09-18 00:24:55 --------------------------------------------------------------------------------
Name : opensaml Product : Fedora 15 Version : 2.3 Release : 4.fc15 URL : http://www.opensaml.org/ Summary : Security Assertion Markup Language Description : OpenSAML is an open source implementation of the OASIS Security Assertion Markup Language Specification. It contains a set of open source C++ classes that support the SAML 1.0, 1.1, and 2.0 specifications. -------------------------------------------------------------------------------- Update Information: Backport of 2.4.3 patch which fixes CVE-2011-1411. -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 14 2011 Guido Grazioli <[email protected]> - 2.3-4 - Backported security patch for CVE-2011-1411 from 2.4.3 - Update Source URL to new location -------------------------------------------------------------------------------- References: [ 1 ] Bug #725526 - CVE-2011-1411 opensaml: vulnerable to XML signature wrapping attacks https://bugzilla.redhat.com/show_bug.cgi?id=725526 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update opensaml' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
