[ubuntu/noble-security] opensaml 3.2.1-4.1ubuntu0.24.04.1 (Accepted)
Julia Sarris
julia.sarris at canonical.com
Mon Mar 24 19:39:14 UTC 2025
opensaml (3.2.1-4.1ubuntu0.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: CPPOST-126 - Simple signature verification fails to
detect parameter smuggling (LP: #2103420)
- debian/patches/lp2103420-forging.patch: address parameter smuggling.
Patch from upstream commit 22a610b322e2178abd03e97cdbc8fb50b45efaee,
thanks to Scott Cantor
- No CVE number
Date: 2025-03-20 19:15:42.327361+00:00
Changed-By: Tom Andrew <tom.andrew at york.ac.uk>
Signed-By: Julia Sarris <julia.sarris at canonical.com>
https://launchpad.net/ubuntu/+source/opensaml/3.2.1-4.1ubuntu0.24.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list