[Git][security-tracker-team/security-tracker][master] Track fixed version for opensaml issue via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun Mar 16 20:31:18 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bde785e5 by Salvatore Bonaccorso at 2025-03-16T21:30:50+01:00
Track fixed version for opensaml issue via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -270,7 +270,7 @@ CVE-2023-52927 (In the Linux kernel, the following vulnerability has been resolv
- linux 6.6.8-1
NOTE: https://git.kernel.org/linus/4914109a8e1e494c6aa9852f9e84ec77a5fc643f (6.6-rc1)
CVE-2025-XXXX [Parameter manipulation allows the forging of signed SAML messages]
- - opensaml <unfixed> (bug #1100464)
+ - opensaml 3.3.1-1 (bug #1100464)
[bookworm] - opensaml 3.2.1-3+deb12u1
NOTE: https://shibboleth.net/community/advisories/secadv_20250313.txt
NOTE: https://git.shibboleth.net/view/?p=cpp-opensaml.git;a=commit;h=22a610b322e2178abd03e97cdbc8fb50b45efaee (3.3.1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bde785e5f7c0deaaa7d2d34f6bc8c0238664c0d6
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bde785e5f7c0deaaa7d2d34f6bc8c0238664c0d6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250316/7589de15/attachment.htm>
More information about the debian-security-tracker-commits
mailing list