xml-security-c 2.0.2

Ferenc W√°gner wagner.ferenc at kifu.gov.hu
Tue Nov 6 09:20:17 GMT 2018


"Cantor, Scott" <cantor.2 at osu.edu> writes:

> FWIW, a 2.0.2 should be out today.

Hi Scott,

http://santuario.apache.org/ states that 2.0.2 fixes a crash similar to
the one fixed by 2.0.1.  This latter was a DoS vector in Shibboleth, but
I can't see a security advisory now; does this mean that SANTUARIO-496
is not exploitable?
-- 
Thanks,
Feri



More information about the Pkg-shibboleth-devel mailing list