ubuntu/+source/python-pysaml2:applied/ubuntu/artful-devel

Last commit made on 2018-01-08
Get this branch:
git clone -b applied/ubuntu/artful-devel https://git.launchpad.net/ubuntu/+source/python-pysaml2
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/artful-devel
Repository:
lp:ubuntu/+source/python-pysaml2

Recent commits

f450925... by Leonidas S. Barbosa on 2018-01-05

Import patches-applied version 3.0.0-3ubuntu2.2 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 8ef9fa74602f863c8d229ecccd06a9da942d9326
Unapplied parent: 8e14ab76e80d2d07fcc892c0b9bfc11a53f6dfdd

New changelog entries:
  * SECURITY UPDATE: Any password can be used if optimizations are enabled
    - debian/patches/CVE-2017-1000433.patch: fixes authentication bypass due
      to optimizations in src/saml2/authn.py.
    - CVE-2017-1000433
  * Add a fix patch for test_41_response
    - debian/patches/fix-test-41-response.patch

8e14ab7... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Applied proposal by jozef@github. Pull request 301. Fixed

Gbp-Pq: fix-test-41-response.patch.

dac0084... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Quick fix for the authentication bypass due to optimizations

Gbp-Pq: CVE-2017-1000433.patch.

f49ee61... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Fixed test

Gbp-Pq: fix-tests.patch.

4d22ebd... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Fix XXE in XML parsing (related to #366)

Gbp-Pq: CVE-2016-10149.patch.

105377b... by Leonidas S. Barbosa on 2018-01-05

disable-repoze.who-tests.patch

No DEP3 Subject or Description header found

Gbp-Pq: disable-repoze.who-tests.patch.

daeda4b... by Leonidas S. Barbosa on 2018-01-05

Import patches-unapplied version 3.0.0-3ubuntu2.2 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: bd667f194b04803a252b392ef8bd27c5de6bc0c2

New changelog entries:
  * SECURITY UPDATE: Any password can be used if optimizations are enabled
    - debian/patches/CVE-2017-1000433.patch: fixes authentication bypass due
      to optimizations in src/saml2/authn.py.
    - CVE-2017-1000433
  * Add a fix patch for test_41_response
    - debian/patches/fix-test-41-response.patch

8ef9fa7... by Leonidas S. Barbosa on 2017-08-22

Import patches-applied version 3.0.0-3ubuntu2 to applied/ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: ab92392d57ee61cfd50191ccbcb76fd8d8872377
Unapplied parent: b9a341f7368abd83d66193d085990605e54335c9

New changelog entries:
  * SECURITY UPDATE: External Entity vulnerability
    - debian/patches/CVE-2016-10149.patch: fixes XXE issues in
      setupy.py, src/saml2/__init__.py, src/saml2/pack.py,
      src/saml2/soap.py, tests/test_03_saml2.py,
      tests/test_43_soap.py, tests/test_51_client.py.
    - CVE-2016-10149
  * Some tests fails in upstream test suite. Adding the
    corresponding fix.
    - debian/patches/fix-tests.patch

bd667f1... by Leonidas S. Barbosa on 2017-08-22

Import patches-unapplied version 3.0.0-3ubuntu2 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 40e15417921b444256064378d0dc85bb21796f8f

New changelog entries:
  * SECURITY UPDATE: External Entity vulnerability
    - debian/patches/CVE-2016-10149.patch: fixes XXE issues in
      setupy.py, src/saml2/__init__.py, src/saml2/pack.py,
      src/saml2/soap.py, tests/test_03_saml2.py,
      tests/test_43_soap.py, tests/test_51_client.py.
    - CVE-2016-10149
  * Some tests fails in upstream test suite. Adding the
    corresponding fix.
    - debian/patches/fix-tests.patch

b9a341f... by Leonidas S. Barbosa on 2017-08-22

[PATCH] Fixed test

Gbp-Pq: fix-tests.patch.