[ubuntu/groovy-security] lasso 2.6.0-7ubuntu2.1 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Wed Jun 2 02:51:12 UTC 2021
lasso (2.6.0-7ubuntu2.1) groovy-security; urgency=medium
* SECURITY UPDATE: unsigned assertions after signed valid assertions
are honored.
- d/p/CVE-2021-28091.patch: Fix signature checking on unsigned
response with multiple assertions
- CVE-2021-28091
Date: 2021-06-01 21:36:09.459895+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/lasso/2.6.0-7ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Groovy-changes
mailing list