Proposed security patch for xmltooling
Russ Allbery
rra at debian.org
Wed Sep 23 02:14:38 UTC 2009
"Scott Cantor" <cantor.2 at osu.edu> writes:
> This fix, however:
>> diff --git a/xmltooling/util/URLEncoder.h b/xmltooling/util/URLEncoder.h
> ...is not really a security fix per se, I think it came in as a
> complaint that some URLs containing commas were causing problems when
> stored in cookies. Just a vanilla bug (though a very simple fix).
> I can't even find the actual issue, which may mean I forgot to file one
> at the time.
Oh, thanks. Just to keep things very clean for the security review, I'll
pull that one back out again.
--
Russ Allbery (rra at debian.org) <http://www.eyrie.org/~eagle/>
More information about the Pkg-shibboleth-devel
mailing list