[ubuntu/bionic-proposed] python-pysaml2 4.0.2-0ubuntu3 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Fri Feb 23 15:19:24 UTC 2018 

python-pysaml2 (4.0.2-0ubuntu3) bionic; urgency=medium

  * SECURITY UPDATE: Any password can be used if optimizations are enabled
    - debian/patches/CVE-2017-1000433.patch: fixes authentication bypass due
      to optimizations in src/saml2/authn.py.
    - CVE-2017-1000433
  * Add a fix patch for test_41_response
    - debian/patches/fix-test-41-response.patch

Date: Thu, 22 Feb 2018 11:20:28 -0300
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/python-pysaml2/4.0.2-0ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 22 Feb 2018 11:20:28 -0300
Source: python-pysaml2
Binary: python-pysaml2 python3-pysaml2 python-pysaml2-doc
Architecture: source
Version: 4.0.2-0ubuntu3
Distribution: bionic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas S. Barbosa <leo.barbosa at canonical.com>
Description:
 python-pysaml2 - SAML Version 2 to be used in a WSGI environment - Python 2.x
 python-pysaml2-doc - SAML Version 2 to be used in a WSGI environment - doc
 python3-pysaml2 - SAML Version 2 to be used in a WSGI environment - Python 3.x
Changes:
 python-pysaml2 (4.0.2-0ubuntu3) bionic; urgency=medium
 .
   * SECURITY UPDATE: Any password can be used if optimizations are enabled
     - debian/patches/CVE-2017-1000433.patch: fixes authentication bypass due
       to optimizations in src/saml2/authn.py.
     - CVE-2017-1000433
   * Add a fix patch for test_41_response
     - debian/patches/fix-test-41-response.patch
Checksums-Sha1:
 d190a53b9135de6e1bab5f09e2c0c6bb737e60eb 2869 python-pysaml2_4.0.2-0ubuntu3.dsc
 93354c4931d6edf669715337604efe0319e0d455 11556 python-pysaml2_4.0.2-0ubuntu3.debian.tar.xz
 14698d97901acb0e2805048855e792a1a2c1b132 7565 python-pysaml2_4.0.2-0ubuntu3_source.buildinfo
Checksums-Sha256:
 766dc36bad4a08d38ff60820534480ea155bfba6e2e7a76c021caf6c9f14d952 2869 python-pysaml2_4.0.2-0ubuntu3.dsc
 7041ef82c45e057b6fc4f2b53cc33d1d56082bfc139d05a1b825f270f7ec59b3 11556 python-pysaml2_4.0.2-0ubuntu3.debian.tar.xz
 fa3ca5d84602bd5aca5c52043715d43b7bc566d375b415bc2db72ff9b2285d10 7565 python-pysaml2_4.0.2-0ubuntu3_source.buildinfo
Files:
 ee5c40a0e4b6987b9f676b0fc173b1ab 2869 python optional python-pysaml2_4.0.2-0ubuntu3.dsc
 29cafff32fa72be7b2f8f694cb76a79b 11556 python optional python-pysaml2_4.0.2-0ubuntu3.debian.tar.xz
 7648aaa1bfdedd1c7a9b7336279af490 7565 python optional python-pysaml2_4.0.2-0ubuntu3_source.buildinfo
Original-Maintainer: PKG OpenStack <openstack-devel at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
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=UVYq
-----END PGP SIGNATURE-----

More information about the Bionic-changes mailing list