[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: pkg/48030: www/shibboleth-sp vulnerabilities
The following reply was made to PR pkg/48030; it has been noted by GNATS.
From: "OBATA Akio" <obache%netbsd.org@localhost>
Subject: Re: pkg/48030: www/shibboleth-sp vulnerabilities
Date: Wed, 10 Jul 2013 22:12:24 +0900
> The vendor site says "The oldest SP version unaffected by fixable
> vulnerabilities is V2.5.2 in conjunction with OpenSAML V2.5.3 and
> libxml-security-c 1.7.1."
It just means "OpenSAM<2.5.3 and libxml-secuirty-c<1.7.1 are vulnerable",
not for shibboleth-sp itself.
Old shibboleth-sp binary installer for Windows may contain such vulnerable
but it is not relevant to pkgsrc.
OBATA Akio / obache%NetBSD.org@localhost
Main Index |
Thread Index |