python-pysaml2 4.9.0-0ubuntu3.1 source package in Ubuntu
Changelog
python-pysaml2 (4.9.0-0ubuntu3.1) focal-security; urgency=medium * SECURITY UPDATE: improper verification of cryptographic signature - debian/patches/CVE-2021-21239.patch: restrict the key data that xmlsec1 accepts to only x509 certs in src/saml2/sigver.py, tests/test_xmlsec1_key_data.py, tests/xmlsec1-keydata/signed-assertion-random-embedded-cert.xml, tests/xmlsec1-keydata/signed-assertion-with-hmac.xml, tests/xmlsec1-keydata/signed-response-with-hmac.xml. - CVE-2021-21239 -- Marc Deslauriers <email address hidden> Tue, 22 Jun 2021 11:06:36 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Focal | updates | main | misc | |
Focal | security | main | misc |
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
python-pysaml2_4.9.0.orig.tar.gz | 4.1 MiB | 403e6c2ee612ce1efb1c070b3a7e12a15793d3074f91f65ff0f06d3726b63df6 |
python-pysaml2_4.9.0-0ubuntu3.1.debian.tar.xz | 15.2 KiB | 21c2a8c1a494ec891e1ad7a9f67dc7fc000ac5f9f08671e09650377c146adef6 |
python-pysaml2_4.9.0-0ubuntu3.1.dsc | 2.5 KiB | 9cd8eb09d2b12f4d649abf588aeae87b1527f0959cdd605b078fab9fc5f200ed |
Available diffs
Binary packages built by this source
- python-pysaml2-doc: SAML Version 2 to be used in a WSGI environment - doc
This package provides a Python implementation of SAML Version 2 to be used in
a WSGI environment.
.
From wikipedia: Security Assertion Markup Language 2.0 (SAML 2.0) is a version
of the SAML standard for exchanging authentication and authorization data
between security domains. SAML 2.0 is an XML-based protocol that uses security
tokens containing assertions to pass information about a principal (usually an
end user) between a SAML authority, that is, an identity provider, and a SAML
consumer, that is, a service provider. SAML 2.0 enables web-based
authentication and authorization scenarios including cross-domain single
sign-on (SSO), which helps reduce the administrative overhead of distributing
multiple authentication tokens to the user.
.
This package contains the documentation.
- python3-pysaml2: SAML Version 2 to be used in a WSGI environment - Python 3.x
This package provides a Python implementation of SAML Version 2 to be used in
a WSGI environment.
.
From wikipedia: Security Assertion Markup Language 2.0 (SAML 2.0) is a version
of the SAML standard for exchanging authentication and authorization data
between security domains. SAML 2.0 is an XML-based protocol that uses security
tokens containing assertions to pass information about a principal (usually an
end user) between a SAML authority, that is, an identity provider, and a SAML
consumer, that is, a service provider. SAML 2.0 enables web-based
authentication and authorization scenarios including cross-domain single
sign-on (SSO), which helps reduce the administrative overhead of distributing
multiple authentication tokens to the user.
.
This package contains the Python 3.x module.