rpms / mod_auth_mellon

Clone
Source Code
GIT

d61f453 Update to new upstream 0.12.0

Authored and Committed by jdennis 8 years ago
raw patch tree parent
3 files changed. 22 lines added. 6 lines removed.
.gitignore
file modified
+1 -0
mod_auth_mellon.spec
file modified
+20 -5
sources
file modified
+1 -1 
    Update to new upstream 0.12.0
    
    - [CVE-2016-2145] Fix DOS attack (Apache worker process crash) due to
      incorrect error handling when reading POST data from client.
    
    - [CVE-2016-2146] Fix DOS attack (Apache worker process crash /
      resource exhaustion) due to missing size checks when reading
      POST data.
    
    In addition this release contains the following new features and fixes:
    
    - Add MellonRedirectDomains option to limit the sites that
      mod_auth_mellon can redirect to. This option is enabled by default.
    
    - Add support for ECP service options in PAOS requests.
    
    - Fix AssertionConsumerService lookup for PAOS requests.
file modified
+1 -0
file modified
+20 -5
file modified
+1 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.