-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Sep 2025 12:38:25 +0200
Source: shibboleth-sp
Binary: libapache2-mod-shib libapache2-mod-shib-dbgsym libshibsp-dev libshibsp-plugins libshibsp-plugins-dbgsym libshibsp11 libshibsp11-dbgsym shibboleth-sp-utils shibboleth-sp-utils-dbgsym
Architecture: amd64
Version: 3.4.1+dfsg-2+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-grnet-03) <buildd_amd64-x86-grnet-03@buildd.debian.org>
Changed-By: Ferenc Wágner <wferi@debian.org>
Description:
 libapache2-mod-shib - Federated web single sign-on system (Apache module)
 libshibsp-dev - Federated web single sign-on system (development)
 libshibsp-plugins - Federated web single sign-on system (plugins)
 libshibsp11 - Federated web single sign-on system (runtime)
 shibboleth-sp-utils - Federated web single sign-on system (daemon and utilities)
Closes: 1114506
Changes:
 shibboleth-sp (3.4.1+dfsg-2+deb12u1) bookworm-security; urgency=high
 .
   * [80ae771] New patch: SSPCPP-1014 - Extend escaping in strings.
     Fix SQL injection vulnerability in Service Provider ODBC plugin:
     specially crafted inputs can exfiltrate information stored in the
     database used by the SP.  The vulnerability is moderate to high
     severity for anyone using the ODBC plugin, and of no impact for others.
     Thanks to Scott Cantor (Closes: #1114506)
Checksums-Sha1:
 7a1356186fd47a0fbd97a9efba4f00f85569ca64 399316 libapache2-mod-shib-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 aa10511929f7d2db5f2664048095819bfdceb416 66284 libapache2-mod-shib_3.4.1+dfsg-2+deb12u1_amd64.deb
 ca2bc567b5e4283c16d65c9c89d08681eb7e5580 54428 libshibsp-dev_3.4.1+dfsg-2+deb12u1_amd64.deb
 54d69dfe91e02af849525e7a6e87560b562b351e 2427244 libshibsp-plugins-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 6e5d5229a62b02aaa45d716a5bbd7d27a64e06b3 179204 libshibsp-plugins_3.4.1+dfsg-2+deb12u1_amd64.deb
 7b0fd089216030239a7732f30c4a161e8ed2fb16 21059652 libshibsp11-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 3c94e653dff66389ec0e4320fd47abca567e0ce8 994480 libshibsp11_3.4.1+dfsg-2+deb12u1_amd64.deb
 7f46c56e2740debca08e7472486aae4487581d3a 426584 shibboleth-sp-utils-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 50ed5c303d820e12c41417722932429a01ef5b9e 79540 shibboleth-sp-utils_3.4.1+dfsg-2+deb12u1_amd64.deb
 68c5d4e4ace450bd236a9e60423deb4691e4bc78 11758 shibboleth-sp_3.4.1+dfsg-2+deb12u1_amd64-buildd.buildinfo
Checksums-Sha256:
 11bced889ae19a5bfe766fb82e92f77dfa0429d3e83c0a12259408f335974e02 399316 libapache2-mod-shib-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 73889047f6b3811cac02c39d98fd269e64833ef77e0bd3e71c4183844a8b600c 66284 libapache2-mod-shib_3.4.1+dfsg-2+deb12u1_amd64.deb
 8b08801e0ab72e9be036e00a90d6e3bdc0623bb83756b906b666eb8c5967f5f1 54428 libshibsp-dev_3.4.1+dfsg-2+deb12u1_amd64.deb
 a97f826b55eaad97b03d3d6411be1d0a6ef9d40d0f0e018780f01c46ee799ebe 2427244 libshibsp-plugins-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 f199b7dd5cf393dd9d209e7d4ad654a946c1c393e362f14f402560e82d2d43c3 179204 libshibsp-plugins_3.4.1+dfsg-2+deb12u1_amd64.deb
 4cd3e6dba37471aab69170b25b01c45df98609af3386935442a941fc533ac4c6 21059652 libshibsp11-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 462c57fa865781273100337e2886939cfede874d3b429d8d95c7584e4fa9e951 994480 libshibsp11_3.4.1+dfsg-2+deb12u1_amd64.deb
 c55e88067e3012374a74b1fde0b9c2aebca763f4066785f780cd57ad4acbd01c 426584 shibboleth-sp-utils-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 ba7a2906ddb1aa58e443da35fce131388cacfc94dccf3d5685278aca969b977b 79540 shibboleth-sp-utils_3.4.1+dfsg-2+deb12u1_amd64.deb
 c0852d194f09748744ba271e80bd5131901e792e706f65414bfb6ee4f43e846f 11758 shibboleth-sp_3.4.1+dfsg-2+deb12u1_amd64-buildd.buildinfo
Files:
 d3262ae5798a6f7bd87b30d2ab6873d2 399316 debug optional libapache2-mod-shib-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 166d5e9807d69355a3042bafbf5244d0 66284 httpd optional libapache2-mod-shib_3.4.1+dfsg-2+deb12u1_amd64.deb
 c3331851e8f58563440d329e59e31433 54428 libdevel optional libshibsp-dev_3.4.1+dfsg-2+deb12u1_amd64.deb
 449b854d67ff72fcd43cf7d1c454afb3 2427244 debug optional libshibsp-plugins-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 93cb234398f1248d8659f15cb324c7d6 179204 libs optional libshibsp-plugins_3.4.1+dfsg-2+deb12u1_amd64.deb
 2cb76837c3153426b902a1690222f872 21059652 debug optional libshibsp11-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 59467e744d51994592da00fd6f9f6d59 994480 libs optional libshibsp11_3.4.1+dfsg-2+deb12u1_amd64.deb
 71da720c243f0c1a7d0bea16078363ca 426584 debug optional shibboleth-sp-utils-dbgsym_3.4.1+dfsg-2+deb12u1_amd64.deb
 68965998291c4b1977fbd38f3794beba 79540 web optional shibboleth-sp-utils_3.4.1+dfsg-2+deb12u1_amd64.deb
 f5f2baacadb91988bee9869f77161109 11758 web optional shibboleth-sp_3.4.1+dfsg-2+deb12u1_amd64-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=mCpM
-----END PGP SIGNATURE-----