[SCM] Debian packaging for XMLTooling-C branch, debian, updated. upstream/1.2-69-g6d3046e
Russ Allbery
rra at debian.org
Thu Aug 27 18:32:40 UTC 2009
The following commit has been merged in the debian branch:
commit 4784bdbb2422a5746736ee24f21ff881efc6fe9d
Author: Russ Allbery <rra at debian.org>
Date: Thu Aug 27 11:26:06 2009 -0700
Better explanation of the upstream security fix
diff --git a/debian/changelog b/debian/changelog
index e9eb5c3..e2404c1 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -2,7 +2,8 @@ xmltooling (1.2.2-1) UNRELEASED; urgency=low
* New upstream release.
- SECURITY: Fix potential buffer overflows and reuses of freed objects
- in error handling code paths with invalid XML. See
+ in error handling code paths with invalid XML or with malformed
+ URLs. See the upstream security advisory at
http://shibboleth.internet2.edu/secadv/secadv_20090826.txt
- Fix other validation issues with malformed objects.
- Fix for accessing the resolution context, which affects the ability
--
Debian packaging for XMLTooling-C
More information about the Pkg-shibboleth-devel
mailing list