Security update for shibboleth-sp
This update for shibboleth-sp fixes the following issues:
Security issue fixed:
- CVE-2017-16852: Fix critical security checks in the Dynamic MetadataProvider plugin in Shibboleth Service (bsc#1068689).
This update was imported from the SUSE:SLE-12-SP1:Update update project.
-
Submitted by
Kristyna Streitova (kstreitova)
Fixed bugs
bnc#1068689
VUL-0: CVE-2017-16852: shibboleth-sp: shibsp/metadata/DynamicMetadataProvider.cpp in the Dynamic MetadataProviderplugin fails to properly configure the MetadataFilter plugins, skipping verifications
