[SECURITY] Fedora 23 Update: ipsilon-1.1.1-2.fc23
updates at fedoraproject.org
updates at fedoraproject.org
Sun Nov 8 06:57:01 UTC 2015
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-15291
2015-11-08 05:29:14.349988
--------------------------------------------------------------------------------
Name : ipsilon
Product : Fedora 23
Version : 1.1.1
Release : 2.fc23
URL : https://fedorahosted.org/ipsilon/
Summary : An Identity Provider Server
Description :
Ipsilon is a multi-protocol Identity Provider service. Its function is to
bridge authentication providers and applications to achieve Single Sign On
and Federation.
--------------------------------------------------------------------------------
Update Information:
Rebased to 1.1.1 release ---- ipsilon-1.0.0-5.fc23 - Backported some
patches - Fix for CVE-2015-5215/CVE-2015-5216/CVE-2015-5217
ipsilon-1.0.0-5.fc22 - Backported some patches - Fix for
CVE-2015-5215/CVE-2015-5216/CVE-2015-5217
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1271530 - CVE-2015-5301 ipsilon: missing user authorization check when deleting a service provider
https://bugzilla.redhat.com/show_bug.cgi?id=1271530
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update ipsilon' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list