-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 06 Sep 2025 11:46:12 +0200 Source: shibboleth-sp Binary: libshibsp-doc shibboleth-sp-common Architecture: all Version: 3.5.0+dfsg-2+deb13u1 Distribution: trixie-security Urgency: high Maintainer: all Build Daemon (x86-csail-02) Changed-By: Ferenc Wágner Description: libshibsp-doc - Federated web single sign-on system (API docs) shibboleth-sp-common - Federated web single sign-on system (common files) Closes: 1114506 Changes: shibboleth-sp (3.5.0+dfsg-2+deb13u1) trixie-security; urgency=high . * [627cc27] New patch: SSPCPP-1014 - Extend escaping in strings. Fix SQL injection vulnerability in Service Provider ODBC plugin: specially crafted inputs can exfiltrate information stored in the database used by the SP. The vulnerability is moderate to high severity for anyone using the ODBC plugin, and of no impact for others. Thanks to Scott Cantor (Closes: #1114506) Checksums-Sha1: 99425b7eabcf0863de872531ce18574adfa23d9b 4001944 libshibsp-doc_3.5.0+dfsg-2+deb13u1_all.deb a125c404d402a54ba23ab9764dc52378c62170c1 44580 shibboleth-sp-common_3.5.0+dfsg-2+deb13u1_all.deb 6d01aa32fa0100644e057a12b8b047fdfb7d626d 11706 shibboleth-sp_3.5.0+dfsg-2+deb13u1_all-buildd.buildinfo Checksums-Sha256: 556467300b1d98da6ff970ac12b2717dbc9c03a9ca637e387bbc453d792df237 4001944 libshibsp-doc_3.5.0+dfsg-2+deb13u1_all.deb 96b110ec602845c01cc935246e8de95cdade025b8773cf065856df8adc94e331 44580 shibboleth-sp-common_3.5.0+dfsg-2+deb13u1_all.deb 771fd23418a27662a0ad4f2d77557247f8865329c40eade00c31ce32a32017d4 11706 shibboleth-sp_3.5.0+dfsg-2+deb13u1_all-buildd.buildinfo Files: dda5199076976d1a73cb87dd12e350d0 4001944 doc optional libshibsp-doc_3.5.0+dfsg-2+deb13u1_all.deb 1a05eee21e818dccf59d596832fc551b 44580 libs optional shibboleth-sp-common_3.5.0+dfsg-2+deb13u1_all.deb 24768169978c121ac0d0674ddc6d4952 11706 web optional shibboleth-sp_3.5.0+dfsg-2+deb13u1_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEELusn8jY95Sf7obGlx30Wh8LXl/YFAmi8hzcACgkQx30Wh8LX l/brsQ//ck/4ADv1CK5ekQOkh3FH/VelRNxN4JLVbdNyuGOKIb21KONPxXIl4epd iz4OaNCqt3g3J74bShG1Iyux5xRY6/ffXciimlwgJI+TmsDeC19i6i1v00yIBbDf ytOMoQsm+REBiV/Zp43bF1DfpKD4+TwqDxrRBHCGbGx9EA60lBLCvwBgcIHFcRl3 qjm5+xb+ph7WAYgIN6F9FzwHkDBxCXihDHW2feWw6LwH0sgInu9Jj7iJEk4NIpST OZFTk4ddLt0isUrqy3NR2oqA8YkA8DEVB/EhQCgK86O+cNZlQnkDZTJWYcLkzmeY U19+Y2He0C/dMr5LvVqvAmRh69QVkj8wL/qGwWDmcA/ZfEZ4kqYUtcVCWy/L93gl fRlPQSnN5Oyh2k2ZBRWTf7wEf3TkgJyLSVgGO8ei3PROU0T/bdqMcH086Df+j5N+ R3ecEUKNyX3u+jX1n90AYrFfU38g3jpAPuMcyM6hHjf2jz0oiCB3LmavnCpQ3JSF yW2U86ATzqH6UKPHFSAZeJdpwlpC57X2fEXfeZVWDE+1cz/vS3Bz/tZ7CC/x33O3 7RL/nbYSt20wEBzLSa2I2GpqTbeiJJWA+Gv0fx5qb2l12PXNhaNJ0t0uFjlhHtlL M4kh4kzam16getLVFTbpI+SEzCOpL+kHemsgwo+SPuzJlw627SE= =lMfp -----END PGP SIGNATURE-----