Skip to content

CentOS 7 - Updates for x86_64: system environment/libraries: lasso

lasso - Liberty Alliance Single Sign On

Website: http://lasso.entrouvert.org/
License: GPLv2+
Vendor: CentOS
Description:
Lasso is a library that implements the Liberty Alliance Single Sign On
standards, including the SAML and SAML2 specifications. It allows to handle
the whole life-cycle of SAML based Federations, and provides bindings
for multiple languages.

Packages

lasso-2.5.1-8.el7_9.x86_64 [192 KiB] Changelog by Jakub Hrozek (2021-06-02):
- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses
lasso-2.5.1-8.el7_9.i686 [187 KiB] Changelog by Jakub Hrozek (2021-06-02):
- Fix Coverity warning introduced by the previous patch
- Related: #1963855 - CVE-2021-28091 lasso: XML signature wrapping
                      vulnerability when parsing SAML responses
lasso-2.5.1-5.el7.x86_64 [191 KiB] Changelog by Jakub Hrozek (2019-08-06):
- Resolves: #1719014 - Expired certificate prevents tests from running
- Actually apply the patch file for the previous build
- Related: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors
lasso-2.5.1-5.el7.i686 [186 KiB] Changelog by Jakub Hrozek (2019-08-06):
- Resolves: #1719014 - Expired certificate prevents tests from running
- Actually apply the patch file for the previous build
- Related: #1730009 - lasso includes "Destination" attribute in SAML
                       AuthnRequest populated with SP
                       AssertionConsumerServiceURL when ECP workflow
                       is used which leads to IdP-side errors
lasso-2.5.1-3.el7.x86_64 [191 KiB] Changelog by Jakub Hrozek (2019-02-10):
- Resolves: #1634267 - ECP signature check fails with
                       LASSO_DS_ERROR_SIGNATURE_NOT_FOUND when assertion signed
                       instead of response
lasso-2.5.1-3.el7.i686 [185 KiB] Changelog by Jakub Hrozek (2019-02-10):
- Resolves: #1634267 - ECP signature check fails with
                       LASSO_DS_ERROR_SIGNATURE_NOT_FOUND when assertion signed
                       instead of response
lasso-2.5.1-2.el7.i686 [185 KiB] Changelog by John Dennis (2016-06-17):
- Rebase to upstream 2.5.1
  Resolves: #1310860
- add validate_idp_list_test patch
lasso-2.5.1-2.el7.x86_64 [190 KiB] Changelog by John Dennis (2016-06-17):
- Rebase to upstream 2.5.1
  Resolves: #1310860
- add validate_idp_list_test patch
lasso-2.5.0-1.el7.i686 [184 KiB] Changelog by John Dennis (2015-09-03):
- Rebase to upstream, now includes our ECP patches, no need to patch any more
  Resolves: #1205342
lasso-2.5.0-1.el7.x86_64 [190 KiB] Changelog by John Dennis (2015-09-03):
- Rebase to upstream, now includes our ECP patches, no need to patch any more
  Resolves: #1205342

Listing created by repoview