Copied from
debian sid in
Primary Archive for Debian GNU/Linux
Changelog
opensaml2 (2.6.1-1) unstable; urgency=high
* [0c08870] New upstream release (2.6.1)
Security fix for CVE-2017-16853:
Rod Widdowson of Steading System Software LLP discovered a coding error in
the OpenSAML library, causing the DynamicMetadataProvider class to fail
configuring itself with the filters provided and omitting whatever checks
they are intended to perform.
* [0795c42] Refresh our patches
* [1f742ec] Update Standards-Version to 4.1.1 (no changes needed)
* [5bed74f] Bump XMLTooling dependency version to 1.6.
This isn't strictly required, but the stack is always updated in
lockstep, so why not follow the upstream spec file in this respect.
-- Ferenc Wágner <email address hidden> Mon, 20 Nov 2017 10:46:24 +0100