Branches for Oneiric

Author: Russ Allbery
Revision Date: 2011-07-25 13:35:54 UTC

* Set urgency to high for security fix.
* New upstream release.
  - SECURITY: Fix vulnerability to a "wrapping attack" that could allow
    a remote, unauthenticated attacker to craft messages that can be
    successfully verified but contain arbitrary content. This may allow
    an attacker to subvert the security of software using OpenSAML and
    supply an unauthenticated login identity and data under the guise of
    a trusted issuer. (CVE-2011-1411)
  - Fix unmarshalling of RespondWith element
  - Make library init routines idempotent
* Update the Debian-provided samlsign.1 man page for new flags supported
  by the upstream utility.
* Update debian/watch for the new upstream distribution location.
* Update standards version to 3.9.2 (no changes required).