Publishing details

Published on 2021-09-14
Copied from ubuntu focal in xena-staging by Corey Bryant

Changelog

python-pysaml2 (6.1.0-0ubuntu2~cloud0) focal-xena; urgency=medium

  * New update for the Ubuntu Cloud Archive.

python-pysaml2 (6.1.0-0ubuntu2) impish; urgency=medium

  * SECURITY UPDATE: improper verification of cryptographic signature
    - debian/patches/CVE-2021-21239.patch: restrict the key data that
      xmlsec1 accepts to only x509 certs in src/saml2/sigver.py,
      tests/test_xmlsec1_key_data.py,
      tests/xmlsec1-keydata/signed-assertion-random-embedded-cert.xml,
      tests/xmlsec1-keydata/signed-assertion-with-hmac.xml,
      tests/xmlsec1-keydata/signed-response-with-hmac.xml.
    - CVE-2021-21239
  * debian/patches/python39compat.patch: fix FTBFS with Python 3.9.

 -- Openstack Ubuntu Testing Bot <email address hidden>  Wed, 08 Sep 2021 14:30:31 +0000

Available diffs

diff from 6.1.0-0ubuntu1~cloud0 (in ~ubuntu-cloud-archive/ubuntu/victoria-staging) to 6.1.0-0ubuntu2~cloud0 (7.9 KiB)

Builds

amd64

Built packages

python-pysaml2-doc SAML Version 2 to be used in a WSGI environment - doc

python3-pysaml2 SAML Version 2 to be used in a WSGI environment - Python 3.x

Package files

python-pysaml2-doc_6.1.0-0ubuntu2~cloud0_all.deb (47.0 KiB)
python-pysaml2_6.1.0-0ubuntu2~cloud0.debian.tar.xz (12.5 KiB)
python-pysaml2_6.1.0-0ubuntu2~cloud0.dsc (2.5 KiB)
python-pysaml2_6.1.0.orig.tar.gz (5.7 MiB)
python3-pysaml2_6.1.0-0ubuntu2~cloud0_all.deb (203.1 KiB)