bajnokk at niif.hu
Tue Jul 26 12:17:07 UTC 2011
what are your plans, are you going to backport the security fix as an update to
OpenSAML 2.3 (the current lenny-backports version) or will you move the stack
to the upstream's current version (at some later time)? Can you estimate the
time of the lenny-backports packages to be updated?
Many of our clients are on lenny-backports (what we've advised them), now with
a known security problem.
(Sorry, in fact I don't know how security fixes go into *-backports in Debian.)
More information about the Pkg-shibboleth-devel