pkgsrc-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: pkg/48030: www/shibboleth-sp vulnerabilities

The following reply was made to PR pkg/48030; it has been noted by GNATS.

From: "OBATA Akio" <>
Subject: Re: pkg/48030: www/shibboleth-sp vulnerabilities
Date: Wed, 10 Jul 2013 22:12:24 +0900

 > The vendor site says "The oldest SP version unaffected by fixable
 > vulnerabilities is V2.5.2 in conjunction with OpenSAML V2.5.3 and
 > libxml-security-c 1.7.1."
 It just means "OpenSAM<2.5.3 and libxml-secuirty-c<1.7.1 are vulnerable",
 not for shibboleth-sp itself.
 Old shibboleth-sp binary installer for Windows may contain such vulnerable 
 but it is not relevant to pkgsrc.
 OBATA Akio /

Home | Main Index | Thread Index | Old Index