ubuntu/+source/python-pysaml2:applied/ubuntu/zesty-updates

Last commit made on 2018-01-08
Get this branch:
git clone -b applied/ubuntu/zesty-updates https://git.launchpad.net/ubuntu/+source/python-pysaml2
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/zesty-updates
Repository:
lp:ubuntu/+source/python-pysaml2

Recent commits

0cc7157... by Leonidas S. Barbosa on 2018-01-05

Import patches-applied version 3.0.0-3ubuntu1.17.04.3 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: a246bacbdb28248fd69fce2a227392862eb0e730
Unapplied parent: b1979d1c3709a97af153c1d49cceb31c6817dcba

New changelog entries:
  * SECURITY UPDATE: Any password can be used if optimizations are enabled
    - debian/patches/CVE-2017-1000433.patch: fixes authentication bypass due
      to optimizations in src/saml2/authn.py.
    - CVE-2017-1000433
  * Adding fix for test 41 response
    - debian/patches/fix-test-41-response.patch

b1979d1... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Applied proposal by jozef@github. Pull request 301. Fixed

Gbp-Pq: fix-test-41-response.patch.

836dfa7... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Quick fix for the authentication bypass due to optimizations

Gbp-Pq: CVE-2017-1000433.patch.

683f7c7... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Fixed test

Gbp-Pq: fix-tests.patch.

1f31b15... by Leonidas S. Barbosa on 2018-01-05

[PATCH] Fix XXE in XML parsing (related to #366)

Gbp-Pq: CVE-2016-10149.patch.

b8e14d5... by Leonidas S. Barbosa on 2018-01-05

disable-repoze.who-tests.patch

No DEP3 Subject or Description header found

Gbp-Pq: disable-repoze.who-tests.patch.

1a78809... by Leonidas S. Barbosa on 2018-01-05

Import patches-unapplied version 3.0.0-3ubuntu1.17.04.3 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 52518ebdd0f489948cd19b588f541d7f96f462c5

New changelog entries:
  * SECURITY UPDATE: Any password can be used if optimizations are enabled
    - debian/patches/CVE-2017-1000433.patch: fixes authentication bypass due
      to optimizations in src/saml2/authn.py.
    - CVE-2017-1000433
  * Adding fix for test 41 response
    - debian/patches/fix-test-41-response.patch

a246bac... by Leonidas S. Barbosa on 2017-08-22

Import patches-applied version 3.0.0-3ubuntu1.17.04.1 to applied/ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: ab92392d57ee61cfd50191ccbcb76fd8d8872377
Unapplied parent: 526b84cfd38be6fcfa99206210b060e544d0974c

New changelog entries:
  * SECURITY UPDATE: External Entity vulnerability
    - debian/patches/CVE-2016-10149.patch: fixes XXE issues in
      setupy.py, src/saml2/__init__.py, src/saml2/pack.py,
      src/saml2/soap.py, tests/test_03_saml2.py,
      tests/test_43_soap.py, tests/test_51_client.py.
    - CVE-2016-10149
  * Some tests fails in upstream test suite. Adding the
    corresponding fix.
    - debian/patches/fix-tests.patch

52518eb... by Leonidas S. Barbosa on 2017-08-22

Import patches-unapplied version 3.0.0-3ubuntu1.17.04.1 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: 40e15417921b444256064378d0dc85bb21796f8f

New changelog entries:
  * SECURITY UPDATE: External Entity vulnerability
    - debian/patches/CVE-2016-10149.patch: fixes XXE issues in
      setupy.py, src/saml2/__init__.py, src/saml2/pack.py,
      src/saml2/soap.py, tests/test_03_saml2.py,
      tests/test_43_soap.py, tests/test_51_client.py.
    - CVE-2016-10149
  * Some tests fails in upstream test suite. Adding the
    corresponding fix.
    - debian/patches/fix-tests.patch

526b84c... by Leonidas S. Barbosa on 2017-08-22

[PATCH] Fixed test

Gbp-Pq: fix-tests.patch.