Information on source package shibboleth-sp2

Available versions

ReleaseVersion
jessie (security)2.5.3+dfsg-2+deb8u1
stretch (security)2.6.0+dfsg1-4+deb9u1

Resolved issues

BugDescription
CVE-2017-16852shibsp/metadata/DynamicMetadataProvider.cpp in the Dynamic ...
CVE-2015-2684Shibboleth Service Provider (SP) before 2.5.4 allows remote ...
CVE-2010-2450shibboleth-sp2: world-readable key
CVE-2009-3476Buffer overflow in OpenSAML before 1.1.3 as used in Internet2 ...
CVE-2009-3475Internet2 Shibboleth Service Provider software 1.3.x before 1.3.3 and ...
CVE-2009-3474OpenSAML 2.x before 2.2.1 and XMLTooling 1.x before 1.2.1, as used by ...
CVE-2009-3300Multiple cross-site scripting (XSS) vulnerabilities in the Identity ...

Security announcements

DSA / DLADescription
DLA-1179-1shibboleth-sp2 - security update
DSA-4038-1shibboleth-sp2 - security update
DSA-4038-1shibboleth-sp2 - security update
DLA-259-1shibboleth-sp2 - security update
DSA-3207-1shibboleth-sp2 - security update
DSA-1947-1opensaml2 shibboleth-sp shibboleth-sp2 - cross-site scripting
DSA-1895-2opensaml2, shibboleth-sp2 - interpretation conflict

Search for package or bug name: Reporting problems