Security advisory for Shibboleth SP2 - need to move to v2.6.0
Bug #1636590 reported by
PiersHarding
This bug report is a duplicate of:
Bug #1732606: CVE-2017-16852 Shibboleth Service Provider Security Advisory [15 November 2017].
Edit
Remove
This bug affects 6 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
opensaml2 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
shibboleth-sp2 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Hi -
I have been trying to get the package build working for shibboleth-sp2 against Xenial 16.04 so that I can use version 2.6.0 which is the only vulnerability free version available according to https:/
I ran into a few problems with this but managed to fumble my way through it - notes here: https:/
However, it would be great if we could have an official build for this.
Thanks,
Piers Harding.
CVE References
Changed in opensaml2 (Ubuntu): | |
status: | New → Confirmed |
To post a comment you must log in.
Status changed to 'Confirmed' because the bug affects multiple users.