subject:"Bug#850716\: \[PKG\-Openstack\-devel\] Bug#850716\: XML External Entity attack"

Bug#850716: [PKG-Openstack-devel] Bug#850716: XML External Entity attack

2017-01-20 Thread Salvatore Bonaccorso

Hi Thomas, On Fri, Jan 20, 2017 at 11:02:56AM +0100, Thomas Goirand wrote: > On 01/19/2017 08:02 PM, Salvatore Bonaccorso wrote: > > Hi, > > > > On Mon, Jan 09, 2017 at 04:28:40PM +0100, Thomas Goirand wrote: > >> there was a security hole fixed in python-pysaml2, which allowed XML > >> External

Bug#850716: [PKG-Openstack-devel] Bug#850716: XML External Entity attack

2017-01-20 Thread Thomas Goirand

On 01/19/2017 08:02 PM, Salvatore Bonaccorso wrote: > Hi, > > On Mon, Jan 09, 2017 at 04:28:40PM +0100, Thomas Goirand wrote: >> there was a security hole fixed in python-pysaml2, which allowed XML >> External Entity attacks: >> https://github.com/rohe/pysaml2/pull/379 >>