Salvatore Bonaccorso writes:
> On Thu, Sep 24, 2015 at 08:54:08AM +0200, Ferenc Wagner wrote:
>
>> Salvatore Bonaccorso writes:
>>
>>> Any news for the fix to unstable for CVE-2015-0851?
>>
>> Sorry, I got bogged down in another department. It isn't
Hi,
On Thu, Sep 24, 2015 at 08:54:08AM +0200, Ferenc Wagner wrote:
> Salvatore Bonaccorso writes:
>
> > Any news for the fix to unstable for CVE-2015-0851?
>
> Sorry, I got bogged down in another department. It isn't forgotten,
> though, I expect to tend to it in a couple
Salvatore Bonaccorso writes:
> Any news for the fix to unstable for CVE-2015-0851?
Sorry, I got bogged down in another department. It isn't forgotten,
though, I expect to tend to it in a couple of days.
--
Regards,
Feri.
Hi
Any news for the fix to unstable for CVE-2015-0851?
Regards,
Salvatore
Source: xmltooling
Version: 1.3.3-2
Severity: serious
Tags: security patch upstream
Shibboleth Service Provider software contains a code path with an uncaught
exception that can be triggered by an unauthenticated attacker by
supplying well-formed but schema-invalid XML in the form of SAML
We're already working on this with the Security Team. I wonder if I
should prepare new packages (for {wheezy,jessie}-security) with the
changelogs closing this bug. Or should it be closed by the unstable
upload of 1.5.5? The proposed security uploads can be found at
On Tuesday 28 July 2015 12:15:43 Ferenc Wagner wrote:
We're already working on this with the Security Team. I wonder if I
should prepare new packages (for {wheezy,jessie}-security) with the
changelogs closing this bug. Or should it be closed by the unstable
upload of 1.5.5? The proposed
7 matches
Mail list logo