-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Fri, 22 Jul 2011 19:07:07 -0700
Source: opensaml2
Binary: libsaml6 libsaml2-dev opensaml2-tools opensaml2-schemas libsaml2-doc
Architecture: kfreebsd-amd64
Version: 2.3-2+squeeze1
Distribution: squeeze-security
Urgency: high
Maintainer: kfreebsd-amd64 Build Daemon (fasch) <buildd_kfreebsd-amd64-fasch@buildd.debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description: 
 libsaml2-dev - Security Assertion Markup Language library (development)
 libsaml2-doc - Security Assertion Markup Language library (API docs)
 libsaml6   - Security Assertion Markup Language library (runtime)
 opensaml2-schemas - Security Assertion Markup Language library (XML schemas)
 opensaml2-tools - Security Assertion Markup Language command-line tools
Changes: 
 opensaml2 (2.3-2+squeeze1) stable-security; urgency=high
 .
   * SECURITY: Fix vulnerability to a "wrapping attack" that could allow a
     remote, unauthenticated attacker to craft messages that can be
     successfully verified but contain arbitrary content.  This may allow
     an attacker to subvert the security of software using OpenSAML and
     supply an unauthenticated login identity and data under the guise of a
     trusted issuer.  (CVE-2011-1411)
Checksums-Sha1: 
 70a7ddb168e28f11d7cbba5cad9b8c531bec758a 1286704 libsaml6_2.3-2+squeeze1_kfreebsd-amd64.deb
 4f3300dba10627f8067d0ef3d6579d7fc706e0a9 47730 libsaml2-dev_2.3-2+squeeze1_kfreebsd-amd64.deb
 3a9fbc6505489ef6250b4ad670d71daa33d2294c 27120 opensaml2-tools_2.3-2+squeeze1_kfreebsd-amd64.deb
Checksums-Sha256: 
 ab9fb3b3f3dad958f261bf27de76ae41d9a4b5176fe6f9fb49fa38812feba46e 1286704 libsaml6_2.3-2+squeeze1_kfreebsd-amd64.deb
 fa6ca05eeae453088372dc70d3331589bfd6ebb56df3316e2b3e3070163af961 47730 libsaml2-dev_2.3-2+squeeze1_kfreebsd-amd64.deb
 f6cbfb7efe20ca08af849d96048a86e5bfb5774763bb0cb7b0455bb44ae9e8dc 27120 opensaml2-tools_2.3-2+squeeze1_kfreebsd-amd64.deb
Files: 
 0cb4590451282d6bfd106b2481d52fce 1286704 libs extra libsaml6_2.3-2+squeeze1_kfreebsd-amd64.deb
 81cf3a40d4a7f27ca190621d42049d9a 47730 libdevel extra libsaml2-dev_2.3-2+squeeze1_kfreebsd-amd64.deb
 e92e49f31009599c4878c0497d6b16db 27120 text extra opensaml2-tools_2.3-2+squeeze1_kfreebsd-amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAEBAgAGBQJOjGzVAAoJEOxfUAG2iX57uFoIALEyjSZpNv7ZcVimy0VqeyQw
LJxPCvc6RhH/PNW8iHWHulAt8w3gew093rbxRszDG6BCMKCOpFfaXWyP+9MH3M5n
ySVmdzhO684TPItbOekmw5F4K9XlkfDGCwWFxz0AoX/k/sxo/M8Zek8qUh+aX2rW
HjsDgTGtTVgAVVxj9DHIkFEyV+Ow2xtLw5iBBlNtydzzAqohbuD9xVF1FXKRc6W4
cI9Tu+M60jz3esyNe/BoxAjtzwvhRkGpTR3VcroRq4jxtLeIn922807kjBJ7znd8
0jg3PG0c3IiAeQW9pmhbq6wkUzIT7gq44NTfhKOsXyWgkU8y+svFY1PoiYccWI4=
=BYIf
-----END PGP SIGNATURE-----