[ubuntu/focal-proposed] python-pysaml2 4.9.0-0ubuntu2 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Tue Jan 21 18:59:12 UTC 2020
python-pysaml2 (4.9.0-0ubuntu2) focal; urgency=medium
* SECURITY UPDATE: Signature in SAML doc not checked properly
- debian/patches/CVE-2020-5390.patch: fix XML signature wrapping
(XSW) in src/saml2/sigver.py, tests/saml2_response_xsw.xml,
tests/test_xsw.py.
- CVE-2020-5390
Date: Tue, 21 Jan 2020 15:07:23 -0300
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/python-pysaml2/4.9.0-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 21 Jan 2020 15:07:23 -0300
Source: python-pysaml2
Architecture: source
Version: 4.9.0-0ubuntu2
Distribution: focal
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas S. Barbosa <leo.barbosa at canonical.com>
Changes:
python-pysaml2 (4.9.0-0ubuntu2) focal; urgency=medium
.
* SECURITY UPDATE: Signature in SAML doc not checked properly
- debian/patches/CVE-2020-5390.patch: fix XML signature wrapping
(XSW) in src/saml2/sigver.py, tests/saml2_response_xsw.xml,
tests/test_xsw.py.
- CVE-2020-5390
Checksums-Sha1:
6fc036f92e5e5ce4b33f2ed0e0536e9c339ef03e 2569 python-pysaml2_4.9.0-0ubuntu2.dsc
074d9ff54703da32316cafa760c4fc0d1f6c10a5 10316 python-pysaml2_4.9.0-0ubuntu2.debian.tar.xz
bf2b5b07cec2e617d6242b72a9622b2c6273652a 7313 python-pysaml2_4.9.0-0ubuntu2_source.buildinfo
Checksums-Sha256:
2edafb04280dafc88acf1cb869b6d5669aaef8e2ae98bd100f98969bd07e2c5c 2569 python-pysaml2_4.9.0-0ubuntu2.dsc
0b18eb539243829f907c4b0005e90798ce109e7ef8c7bcba5bd0fa39d87dd53c 10316 python-pysaml2_4.9.0-0ubuntu2.debian.tar.xz
a491d6d34bd9f5d09d626a9b40a504e972591760280c5da800a8bc77c33012c6 7313 python-pysaml2_4.9.0-0ubuntu2_source.buildinfo
Files:
b62fe702638926431f8681d84bd4ef62 2569 python optional python-pysaml2_4.9.0-0ubuntu2.dsc
e08c7e7aed890c6acef2e3038c8ae9a2 10316 python optional python-pysaml2_4.9.0-0ubuntu2.debian.tar.xz
1ad103591f6311fbcdf371f5fdd781a8 7313 python optional python-pysaml2_4.9.0-0ubuntu2_source.buildinfo
Original-Maintainer: PKG OpenStack <openstack-devel at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEUMSg3c8x5FLOsZtRZWnYVadEvpMFAl4nSZIACgkQZWnYVadE
vpPQAg/+Oa06HfqG2VFSlNzLAKmRP52wH00ZubvFCtgB/aWjduplvuG26l4MrDrf
/F91Moe7siIPpcUfyCh7KrRlkrTbTeN7vF7uif47vDjJZI8YsOloTxagCJ4ov15G
uH6sW/VC9slGw8wx0HpcCkFigz9GJwl/XvpkZHwj9dSi8K33WzgvJe1u9tmcRxVE
6DmirBvbEoxyq5XgcUGUIql2vVn3ljlLlzcFMjl+kSSLAaMO5vNkCLLuVw/lO1/D
/adAHvzS2/6PZ9LrjTvYGPFQIB773gvBz/PquPblVGkalmD5f6+wZkIxAUd/OqO+
S+ZOM0NmL92Z6nTQU9pvzevc1Art91AReIwnjTf/6D5QGX2hbGupdY48mwoz5Z2a
DKygPHqVO0/8NpMZqWrBBK/781Det9EnHXuscr9AkA75h8jF1ak5IXi7En7akTCZ
chM8K0fo3str19mqMlsZt4ekKJruYBYhMl0eNlwnjC5OR1zfGMEui5kAwn6d3Sm5
449IEznjxgeh9+1mxHBPBb2InFACRpf95+dCdMqi8IW4RcbA7cqpfpXAXZAQy0fD
OAC3SiWcWxaEEIOXuUCT4F3chzQce3e/uIKMHsEGyoKK31rnMa73joWrB8zFSRmE
5/dDdoxRk1itOI6LwvDrWBgBIfxtQQnuPNyRYmg4c7Y9WDNJR90=
=9eMB
-----END PGP SIGNATURE-----
More information about the Focal-changes
mailing list