Bug#881857: add CVE

Ferenc Wágner wferi at niif.hu
Fri Nov 17 16:43:54 UTC 2017

Salvatore Bonaccorso <carnil at debian.org> writes:

> Thanks, need to check why my mail for 881857 did not went trough
> (since I retitled both with the CVE assignments).

I think you used the same bug number in both.

Now, this is still ongoing:
The upstream fixes for this issue appeared as new patch level releases
for XMLTooling (1.6.2), OpenSAML (2.6.1) and the SP (2.6.1).  Shall I
wait for the transition to finish before uploading them?

More information about the Pkg-shibboleth-devel mailing list