kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
freebsd-ports/security/opensaml2/pkg-plist
Palle Girgensohn 43e9362f36 Shibboleth SP software crashes on well-formed but invalid XML. 
The Service Provider software contains a code path with an uncaught
exception that can be triggered by an unauthenticated attacker by
supplying well-formed but schema-invalid XML in the form of SAML
metadata or SAML protocol messages. The result is a crash and so
causes a denial of service.

You must rebuild opensaml and shibboleth with xmltooling-1.5.5 or later.
The easiest way to do so is to update the whole chain including
shibboleth-2.5.5 an opensaml2.5.5.

URL:    	http://shibboleth.net/community/advisories/secadv_20150721.txt
Security:	CVE-2015-2684
2015-07-23 13:21:05 +00:00

109 lines
5 KiB
Text
Raw Blame History

bin/samlsign
include/saml/encryption/EncryptedKeyResolver.h
include/saml/Assertion.h
include/saml/base.h
include/saml/exceptions.h
include/saml/version.h
include/saml/RootObject.h
include/saml/SAMLConfig.h
include/saml/saml1/binding/SAMLArtifactType0001.h
include/saml/saml1/binding/SAMLArtifactType0002.h
include/saml/saml1/binding/SAML1MessageDecoder.h
include/saml/saml1/binding/SAML1SOAPClient.h
include/saml/saml1/core/Assertions.h
include/saml/saml1/core/Protocols.h
include/saml/saml1/profile/AssertionValidator.h
include/saml/saml1/profile/BrowserSSOProfileValidator.h
include/saml/saml2/binding/SAML2Artifact.h
include/saml/saml2/binding/SAML2ArtifactType0004.h
include/saml/saml2/binding/SAML2MessageDecoder.h
include/saml/saml2/binding/SAML2Redirect.h
include/saml/saml2/binding/SAML2SOAPClient.h
include/saml/saml2/core/Assertions.h
include/saml/saml2/core/Protocols.h
include/saml/saml2/metadata/AbstractMetadataProvider.h
include/saml/saml2/metadata/DiscoverableMetadataProvider.h
include/saml/saml2/metadata/DynamicMetadataProvider.h
include/saml/saml2/metadata/EndpointManager.h
include/saml/saml2/metadata/EntityMatcher.h
include/saml/saml2/metadata/Metadata.h
include/saml/saml2/metadata/MetadataCredentialContext.h
include/saml/saml2/metadata/MetadataCredentialCriteria.h
include/saml/saml2/metadata/MetadataFilter.h
include/saml/saml2/metadata/MetadataProvider.h
include/saml/saml2/metadata/ObservableMetadataProvider.h
include/saml/saml2/profile/AssertionValidator.h
include/saml/saml2/profile/BrowserSSOProfileValidator.h
include/saml/saml2/profile/SAML2AssertionPolicy.h
include/saml/binding/ArtifactMap.h
include/saml/binding/MessageDecoder.h
include/saml/binding/MessageEncoder.h
include/saml/binding/SAMLArtifact.h
include/saml/binding/SecurityPolicy.h
include/saml/binding/SecurityPolicyRule.h
include/saml/binding/SOAPClient.h
include/saml/signature/ContentReference.h
include/saml/signature/SignableObject.h
include/saml/signature/SignatureProfileValidator.h
include/saml/util/CommonDomainCookie.h
include/saml/util/SAMLConstants.h
lib/libsaml.so
lib/libsaml.so.8
lib/libsaml.so.8.0.5
libdata/pkgconfig/opensaml.pc
%%PORTDOCS%%%%DOCSDIR%%/README.txt
%%PORTDOCS%%%%DOCSDIR%%/LICENSE.txt
%%PORTDOCS%%%%DOCSDIR%%/NOTICE.txt
%%PORTDOCS%%%%DOCSDIR%%/LOG4CPP.LICENSE
share/xml/opensaml/saml20-catalog.xml
share/xml/opensaml/saml10-catalog.xml
share/xml/opensaml/saml11-catalog.xml
share/xml/opensaml/sstc-metadata-attr.xsd
share/xml/opensaml/sstc-request-initiation.xsd
share/xml/opensaml/sstc-saml-attribute-ext.xsd
share/xml/opensaml/sstc-saml-delegation.xsd
share/xml/opensaml/sstc-saml-idp-discovery.xsd
share/xml/opensaml/sstc-saml-metadata-algsupport-v1.0.xsd
share/xml/opensaml/sstc-saml-metadata-ui-v1.0.xsd
share/xml/opensaml/cs-sstc-schema-assertion-01.xsd
share/xml/opensaml/cs-sstc-schema-protocol-01.xsd
share/xml/opensaml/cs-sstc-schema-assertion-1.1.xsd
share/xml/opensaml/cs-sstc-schema-protocol-1.1.xsd
share/xml/opensaml/saml-async-slo-v1.0.xsd
share/xml/opensaml/saml-metadata-rpi-v1.0.xsd
share/xml/opensaml/saml-schema-assertion-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-auth-telephony-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-ip-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-pgp-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-ippword-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-kerberos-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-nomad-telephony-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-personal-telephony-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-ppt-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-pword-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-session-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-smartcard-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-smartcardpki-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-softwarepki-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-spki-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-srp-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-sslcert-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-telephony-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-timesync-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-types-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-x509-2.0.xsd
share/xml/opensaml/saml-schema-authn-context-xmldsig-2.0.xsd
share/xml/opensaml/saml-schema-dce-2.0.xsd
share/xml/opensaml/saml-schema-ecp-2.0.xsd
share/xml/opensaml/saml-schema-metadata-2.0.xsd
share/xml/opensaml/saml-schema-protocol-2.0.xsd
share/xml/opensaml/saml-schema-x500-2.0.xsd
share/xml/opensaml/saml-schema-xacml-2.0.xsd
share/xml/opensaml/sstc-saml1x-metadata.xsd
share/xml/opensaml/sstc-saml-metadata-ext-query.xsd
share/xml/opensaml/sstc-saml-protocol-ext-thirdparty.xsd
Reference in a new issue View git blame Copy permalink