-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Sep 2025 12:38:25 +0200
Source: shibboleth-sp
Binary: libapache2-mod-shib libapache2-mod-shib-dbgsym libshibsp-dev libshibsp-plugins libshibsp-plugins-dbgsym libshibsp11 libshibsp11-dbgsym shibboleth-sp-utils shibboleth-sp-utils-dbgsym
Architecture: i386
Version: 3.4.1+dfsg-2+deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-ubc-02) <buildd_amd64-x86-ubc-02@buildd.debian.org>
Changed-By: Ferenc Wágner <wferi@debian.org>
Description:
 libapache2-mod-shib - Federated web single sign-on system (Apache module)
 libshibsp-dev - Federated web single sign-on system (development)
 libshibsp-plugins - Federated web single sign-on system (plugins)
 libshibsp11 - Federated web single sign-on system (runtime)
 shibboleth-sp-utils - Federated web single sign-on system (daemon and utilities)
Closes: 1114506
Changes:
 shibboleth-sp (3.4.1+dfsg-2+deb12u1) bookworm-security; urgency=high
 .
   * [80ae771] New patch: SSPCPP-1014 - Extend escaping in strings.
     Fix SQL injection vulnerability in Service Provider ODBC plugin:
     specially crafted inputs can exfiltrate information stored in the
     database used by the SP.  The vulnerability is moderate to high
     severity for anyone using the ODBC plugin, and of no impact for others.
     Thanks to Scott Cantor (Closes: #1114506)
Checksums-Sha1:
 26d2e495cdbc1d448812d0a214cd96823c389db5 384364 libapache2-mod-shib-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 5a6d1b4d3da2bb9837a42c8d412218b9fdd61260 69648 libapache2-mod-shib_3.4.1+dfsg-2+deb12u1_i386.deb
 4be44e726b60b674f8c2edc13107000e61636d8d 54372 libshibsp-dev_3.4.1+dfsg-2+deb12u1_i386.deb
 794e52853243d1a9a18e1588035ce6d7085c2c08 2322684 libshibsp-plugins-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 79f2549207539a0988a81672614f7fe14ffa4f27 186760 libshibsp-plugins_3.4.1+dfsg-2+deb12u1_i386.deb
 b56676bcaeb214dd0ec3dcd0a6f5a770e8cf6705 20267236 libshibsp11-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 25f2e1b9df1fc23d0a02de6a3e89b9497081a665 1061508 libshibsp11_3.4.1+dfsg-2+deb12u1_i386.deb
 f495913d58c2574cb9ef3885812c0037a93dd9c6 411768 shibboleth-sp-utils-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 55a2d01c925fc36e2007d5d2737d9da467e621ed 80228 shibboleth-sp-utils_3.4.1+dfsg-2+deb12u1_i386.deb
 a4b305c1a161dfe2d36ecfb6b2a8fcfb6686f12c 11664 shibboleth-sp_3.4.1+dfsg-2+deb12u1_i386-buildd.buildinfo
Checksums-Sha256:
 a69a3ddefcf1eec475aa7f1ebad36b5ee3bfc8ace5cd354b11caba48e93d042e 384364 libapache2-mod-shib-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 db6b97527abe627e913a156d885bdf23a5c6849c11c84d891236ad3c7d615143 69648 libapache2-mod-shib_3.4.1+dfsg-2+deb12u1_i386.deb
 120c2110e5b9486bfd0343498175d102e5a436b2dfbada3ba148e408f4715e00 54372 libshibsp-dev_3.4.1+dfsg-2+deb12u1_i386.deb
 61f9eda7080de5c49482fa375380745c333a1d24b692f638cd96884a16981cd9 2322684 libshibsp-plugins-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 bfceb4b4eb815c4c4da8d82c40a1e8d96424125dd1edcc2044c55337859d55ef 186760 libshibsp-plugins_3.4.1+dfsg-2+deb12u1_i386.deb
 857fcb9c7c3b277d89b991458f3bfd513786cafa613eee657e72f93e4e5231f5 20267236 libshibsp11-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 bde2afb9c59b98217fd5e718d3816317fa90604a3525f0da25adc966e9d8cd88 1061508 libshibsp11_3.4.1+dfsg-2+deb12u1_i386.deb
 39f9017b5892bd451355983199808e5990d7f2997b50798fa81c6abe950522cd 411768 shibboleth-sp-utils-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 f908b290329b688089d2adf32acaf4fee0e4371ecdd1cb67278aa82420add4d8 80228 shibboleth-sp-utils_3.4.1+dfsg-2+deb12u1_i386.deb
 597c2a7f2666c0b1041a5cf5931217f9e1af0059b728c5c184bd43ba8a65ba85 11664 shibboleth-sp_3.4.1+dfsg-2+deb12u1_i386-buildd.buildinfo
Files:
 d253f104846cc6da397f7ae9c1d05ddf 384364 debug optional libapache2-mod-shib-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 a5a5be1c9bd232fb7b2cc7f5cea23155 69648 httpd optional libapache2-mod-shib_3.4.1+dfsg-2+deb12u1_i386.deb
 95fa3bcc9242e7ba88b7ef01f13bbf97 54372 libdevel optional libshibsp-dev_3.4.1+dfsg-2+deb12u1_i386.deb
 c99401bad434fe82d015d17536f8f9e3 2322684 debug optional libshibsp-plugins-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 8635c0a06cb48de78114090d1ea1f5dc 186760 libs optional libshibsp-plugins_3.4.1+dfsg-2+deb12u1_i386.deb
 61bf94bc841a9691e39d8f879a69c6ac 20267236 debug optional libshibsp11-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 eaa27a01d6cabe5108db090d6a856f17 1061508 libs optional libshibsp11_3.4.1+dfsg-2+deb12u1_i386.deb
 54bc367e9ffdeadbe48a28e9e3b8b54c 411768 debug optional shibboleth-sp-utils-dbgsym_3.4.1+dfsg-2+deb12u1_i386.deb
 b922a496aa71c2881f9af685c9492028 80228 web optional shibboleth-sp-utils_3.4.1+dfsg-2+deb12u1_i386.deb
 e4306623790a6ace529166d23a3c98e0 11664 web optional shibboleth-sp_3.4.1+dfsg-2+deb12u1_i386-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=ELyS
-----END PGP SIGNATURE-----