[SECURITY] Fedora 16 Update: opensaml-2.3-6.fc16
updates at fedoraproject.org
updates at fedoraproject.org
Fri Sep 30 19:06:54 UTC 2011
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-12815
2011-09-17 19:28:53
--------------------------------------------------------------------------------
Name : opensaml
Product : Fedora 16
Version : 2.3
Release : 6.fc16
URL : http://www.opensaml.org/
Summary : Security Assertion Markup Language
Description :
OpenSAML is an open source implementation of the OASIS Security Assertion
Markup Language Specification. It contains a set of open source C++ classes
that support the SAML 1.0, 1.1, and 2.0 specifications.
--------------------------------------------------------------------------------
Update Information:
Backport of 2.4.3 patch which fixes CVE-2011-1411.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #725526 - CVE-2011-1411 opensaml: vulnerable to XML signature wrapping attacks
https://bugzilla.redhat.com/show_bug.cgi?id=725526
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update opensaml' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list