-
lasso (2.6.0-7ubuntu1.2) focal-security; urgency=medium
* SECURITY UPDATE: unsigned assertions after signed valid assertions
are honored.
- d/p/CVE-2021-28091.patch: Fix signature checking on unsigned
response with multiple assertions
- CVE-2021-28091
-- Steve Beattie <email address hidden> Fri, 28 May 2021 14:49:51 -0700
-
lasso (2.6.0-7ubuntu1.1) focal; urgency=medium
* d/p/Fix-ECP-signature-not-found-error-when-only-assertion.patch:
Cherry-picked from upstream bugfix for handling authn responses correctly
(LP: #1897117).
-- Chris MacNaughton <email address hidden> Fri, 25 Sep 2020 14:29:11 +0000
-
lasso (2.6.0-7ubuntu1) focal; urgency=low
* Merge from Debian unstable. Remaining changes:
- d/p/PAOS-Do-not-populate-Destination-attribute.patch: Do not populate
"Destination" attribute (LP: #1833299)
-- Corey Bryant <email address hidden> Wed, 19 Feb 2020 09:54:35 -0500
-
lasso (2.6.0-2ubuntu3) focal; urgency=medium
* No-change rebuild to drop python3.7.
-- Matthias Klose <email address hidden> Tue, 18 Feb 2020 10:20:19 +0100
-
lasso (2.6.0-2ubuntu2) focal; urgency=medium
* No-change rebuild to build with python3.8.
-- Matthias Klose <email address hidden> Fri, 18 Oct 2019 18:41:16 +0000
-
lasso (2.6.0-2ubuntu1) eoan; urgency=high
* d/p/PAOS-Do-not-populate-Destination-attribute.patch: Do not populate
"Destination" attribute (LP: #1833299)
-- Dmitrii Shcherbakov <email address hidden> Thu, 04 Jul 2019 18:42:56 -0500