Univention Bugzilla – Bug 50908
python-pysaml2: Multiple issues (4.3)
Last modified: 2020-03-11 13:57:23 CET
New Debian python-pysaml2 3.0.0-5+deb9u1A~4.3.5.202003091522 fixes: This update addresses the following issue: * does not check that the signature in a SAML document is enveloped (CVE-2020-5390)
--- mirror/ftp/4.2/unmaintained/4.2-0/source/python-pysaml2_3.0.0-5A~4.2.0.201702151906.dsc +++ apt/ucs_4.3-0-errata4.3-5/source/python-pysaml2_3.0.0-5+deb9u1A~4.3.5.202003091522.dsc @@ -1,9 +1,13 @@ -3.0.0-5A~4.2.0.201702151906 [Wed, 15 Feb 2017 19:06:22 +0100] Univention builddaemon <buildd@univention.de>: +3.0.0-5+deb9u1A~4.3.5.202003091522 [Mon, 09 Mar 2020 15:27:28 +0100] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 002 003-remove-python3 debhelper + +3.0.0-5+deb9u1 [Wed, 19 Feb 2020 21:45:47 +0100] Moritz Mühlenhoff <jmm@debian.org>: + + * CVE-2020-5390 3.0.0-5 [Mon, 09 Jan 2017 16:28:55 +0100] Thomas Goirand <zigo@debian.org>: <http://10.200.17.11/4.3-5/#5576504404260506117>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-5] a84967e541 Bug #50908: python-pysaml2 3.0.0-5+deb9u1A~4.3.5.202003091522 doc/errata/staging/python-pysaml2.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) [4.3-5] 616f60109a Bug #50908: python-pysaml2 3.0.0-5+deb9u1A~4.3.5.202003091522 doc/errata/staging/python-pysaml2.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<http://errata.software-univention.de/ucs/4.3/653.html>