-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Fri, 22 Jul 2011 19:07:07 -0700
Source: opensaml2
Binary: libsaml6 libsaml2-dev opensaml2-tools opensaml2-schemas libsaml2-doc
Architecture: kfreebsd-i386
Version: 2.3-2+squeeze1
Distribution: squeeze-security
Urgency: high
Maintainer: kfreebsd-i386 Build Daemon (finzi) <buildd_kfreebsd-i386-finzi@buildd.debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description: 
 libsaml2-dev - Security Assertion Markup Language library (development)
 libsaml2-doc - Security Assertion Markup Language library (API docs)
 libsaml6   - Security Assertion Markup Language library (runtime)
 opensaml2-schemas - Security Assertion Markup Language library (XML schemas)
 opensaml2-tools - Security Assertion Markup Language command-line tools
Changes: 
 opensaml2 (2.3-2+squeeze1) stable-security; urgency=high
 .
   * SECURITY: Fix vulnerability to a "wrapping attack" that could allow a
     remote, unauthenticated attacker to craft messages that can be
     successfully verified but contain arbitrary content.  This may allow
     an attacker to subvert the security of software using OpenSAML and
     supply an unauthenticated login identity and data under the guise of a
     trusted issuer.  (CVE-2011-1411)
Checksums-Sha1: 
 18d867f2c0d426c0ac7d9f485406f0143a76d1d5 1195084 libsaml6_2.3-2+squeeze1_kfreebsd-i386.deb
 e520a03867afe22464e25c025a1c05749729429d 47738 libsaml2-dev_2.3-2+squeeze1_kfreebsd-i386.deb
 83b20ae903e0696c94083054884470f5f500d1b3 26608 opensaml2-tools_2.3-2+squeeze1_kfreebsd-i386.deb
Checksums-Sha256: 
 211fbad60df217452aeba2e95b5a05690946053c1e2f63e42e0ffe199107be29 1195084 libsaml6_2.3-2+squeeze1_kfreebsd-i386.deb
 79406e34fb0243d89d894a3b0324a4f7a555813f89f42e498a8f423426cddc4c 47738 libsaml2-dev_2.3-2+squeeze1_kfreebsd-i386.deb
 7f03624f1015de45b23549e688da22b86e92788066046e87799e9770a9920e90 26608 opensaml2-tools_2.3-2+squeeze1_kfreebsd-i386.deb
Files: 
 6346301c2aaf2fe3542b81bb2aaf01c7 1195084 libs extra libsaml6_2.3-2+squeeze1_kfreebsd-i386.deb
 e8b1e4079f00eb7e57636f25ece36c7c 47738 libdevel extra libsaml2-dev_2.3-2+squeeze1_kfreebsd-i386.deb
 3b7bc0e2e4d94dceff6905c44964510b 26608 text extra opensaml2-tools_2.3-2+squeeze1_kfreebsd-i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAEBAgAGBQJOjGzVAAoJEOxfUAG2iX570bIH/it7yxm53kQW3l/holS+2HpW
NRTRKenlK/b4U+POoA9c4esk00/hC3FhhqT3Tbia7vI9y174X9RtmiqLMwCsHcDy
kwszJpcEit1l5TK1Tz2P5twYB8zxOY4JWlHnpK9WicmyHIo0G9GxCs7ZBtbHm4Y+
uygiZIxWtjGSRzTknYYI25qbyvweiQY1sVOnJPWJaekTHxNKGfHBpHQI19R6zQg5
cf9ddzrtePG/s/VB4zEe637Nkm7OHjrMksx5G2igh6FdcKerZJc2ovRWI7tW6G7E
NgfpZVQLHlu1JfdgedDQsdNKOcBZnIfwffw8ly5apZ3BzIPi0RB42SefP8DurFE=
=AFI9
-----END PGP SIGNATURE-----