1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 4039-1] opensaml2 security update

    From Salvatore Bonaccorso@1:229/2 to All on Thu Nov 16 22:40:01 2017
    From: [email protected]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4039-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 16, 2017 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : opensaml2
    CVE ID : CVE-2017-16853
    Debian Bug : 881856

    Rod Widdowson of Steading System Software LLP discovered a coding error
    in the OpenSAML library, causing the DynamicMetadataProvider class to
    fail configuring itself with the filters provided and omitting whatever
    checks they are intended to perform.

    For the oldstable distribution (jessie), this problem has been fixed
    in version 2.5.3-2+deb8u2.

    For the stable distribution (stretch), this problem has been fixed in
    version 2.6.0-4+deb9u1.

    We recommend that you upgrade your opensaml2 packages.

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAloOASNfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0RPxA/+NBCSO0BVbyaXwd7dsXr/5gNl9KVTRJhsYKch79VMiagzY7ntzK1wBjLY MZcrLpGyCjuvRUSmG4i9eM8RaBsBIDYaX/DWYfwqrq0aHDX7M2sdLG2T3EMC0MJj eTpcdxW+YlPse1g6WiwtcaJOVqnDVveTCE8xwzA2rreFSkdB37dSH29s9BZbKJTZ ABRj9qgiYIg7ZOgPLdSR2vZ8j+ByyVaAIMPPgp8H1ZkyT1ZN/9WIzrero1/9dmM8 S06pWHG46D7E7nUDDQ4qDZS9Mkl3zB1Gd6ejAq87+J0gmOaFLxGOiic5yPw8vrnD QNDHXPx1B/Z5qWQgBgZEKECZfatWuudBAiSqNQO35wwVhNNT0Qw2VnjY5shP+ST0 YDJumTUozXTts0h+3Pu4H5JHMT1Q3OklFVHcjbPkPdXDnRE8ZotAYj1PqHrPSY9+ x0KV0w7AOvmemViCbmPLUQZGC4aiodDacqo/2cG8YOjSPD7UjZwkoLxBrC6Cxgy7 53zMsMbws5gwuB8as0bMufFPuiEZ3VE4/nnUPg0U87aYXK52x5FPaIciqqrQLEU0 QsZ8rskzwbsuFKosNvusoZev3X19BtStRRp2AAw7UC2iz/3Faxs6OStEsDofPq6R z7BdHcU+7F7qP/PcibIRebA8Q/qH30xWdtSMezA9MeojRCbAmOI=
    =mgMW
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)