group.of.nepali.translators team mailing list archive

Thread
Date
[Bug 2103420] Re: Security issue with libsaml12

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Eduardo Barretto <2103420@xxxxxxxxxxxxxxxxxx>
Date: Thu, 20 Mar 2025 16:35:46 -0000
Reply-to: Bug 2103420 <2103420@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx
** Also affects: opensaml (Ubuntu Noble)
   Importance: Undecided
       Status: New

** Also affects: opensaml2 (Ubuntu Noble)
   Importance: Undecided
       Status: New

** Also affects: opensaml (Ubuntu Trusty)
   Importance: Undecided
       Status: New

** Also affects: opensaml2 (Ubuntu Trusty)
   Importance: Undecided
       Status: New

** Also affects: opensaml (Ubuntu Jammy)
   Importance: Undecided
       Status: New

** Also affects: opensaml2 (Ubuntu Jammy)
   Importance: Undecided
       Status: New

** Also affects: opensaml (Ubuntu Plucky)
   Importance: Undecided
     Assignee: John Breton (john-breton)
       Status: In Progress

** Also affects: opensaml2 (Ubuntu Plucky)
   Importance: Undecided
     Assignee: John Breton (john-breton)
       Status: In Progress

** Also affects: opensaml (Ubuntu Focal)
   Importance: Undecided
       Status: New

** Also affects: opensaml2 (Ubuntu Focal)
   Importance: Undecided
       Status: New

** Also affects: opensaml (Ubuntu Xenial)
   Importance: Undecided
       Status: New

** Also affects: opensaml2 (Ubuntu Xenial)
   Importance: Undecided
       Status: New

** Also affects: opensaml (Ubuntu Bionic)
   Importance: Undecided
       Status: New

** Also affects: opensaml2 (Ubuntu Bionic)
   Importance: Undecided
       Status: New

** Also affects: opensaml (Ubuntu Oracular)
   Importance: Undecided
       Status: New

** Also affects: opensaml2 (Ubuntu Oracular)
   Importance: Undecided
       Status: New

** No longer affects: opensaml2 (Ubuntu Focal)

** No longer affects: opensaml2 (Ubuntu Jammy)

** No longer affects: opensaml2 (Ubuntu Plucky)

** No longer affects: opensaml2 (Ubuntu Oracular)

** No longer affects: opensaml2 (Ubuntu Noble)

** No longer affects: opensaml (Ubuntu Trusty)

** No longer affects: opensaml (Ubuntu Xenial)

** No longer affects: opensaml (Ubuntu Bionic)

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/2103420

Title:
  Security issue with libsaml12

Status in opensaml package in Ubuntu:
  In Progress
Status in opensaml2 package in Ubuntu:
  In Progress
Status in opensaml2 source package in Trusty:
  New
Status in opensaml2 source package in Xenial:
  New
Status in opensaml2 source package in Bionic:
  New
Status in opensaml source package in Focal:
  In Progress
Status in opensaml source package in Jammy:
  In Progress
Status in opensaml source package in Noble:
  In Progress
Status in opensaml source package in Oracular:
  In Progress
Status in opensaml source package in Plucky:
  In Progress

Bug description:
  A security issue has been discovered on the OpenSAML by Shibboleth.

  Debian has release a new version and this has to be fixed by Ubuntu as
  well.

  From Debian:
  "Alexander Tan discovered that the OpenSAML C++ library was susceptible
  to forging of signed SAML messages. For additional details please refer
  to the upstream advisory at
  https://shibboleth.net/community/advisories/secadv_20250313.txt";

  https://lists.debian.org/debian-security-announce/2025/msg00041.html

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/opensaml/+bug/2103420/+subscriptions