shibboleth-sp (3.5.1+dfsg-1) [PTS] [DDPO]

COMMITS: VCS has seen 1 commit since the debian/3.5.1+dfsg-1 tag

Git: https://salsa.debian.org/shib-team/shibboleth-sp2.git
JSON
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: debian/master
Path: debian/changelog
Repo size: 20504576
Browser: https://salsa.debian.org/shib-team/shibboleth-sp2
Last scan: 2025-10-21 02:13:01+00
Next scan: 2025-10-29 03:50:00+00
CI pipeline status: success

Debian changelog in Git:

shibboleth-sp (3.5.1+dfsg-1) unstable; urgency=high

  * Urgency set to high for security fix.
  * [d265d78] New upstream release: 3.5.1 (Closes: #1114506, CVE-2025-9943)
    Fix SQL injection vulnerability in Service Provider ODBC plugin:
    specially crafted inputs can exfiltrate information stored in the
    database used by the SP.  The vulnerability is moderate to high
    severity for anyone using the ODBC plugin, and of no impact for others.
  * [059241e] Refresh our patches
  * [5a80567] Update Standards-Version to 4.7.2 (no changes required)
  * [9a8761b] New patch: Disable Doxygen's SHORT_NAMES to gain reproducibility

 -- Ferenc Wágner <wferi@debian.org>  Sat, 06 Sep 2025 13:35:57 +0200

This branch is 1 commit ahead of tag debian/3.5.1+dfsg-1

Git log:

commit b9b86fa3b8b0cd39289db1b33555eabf7c086e2f
Author: Ferenc Wágner <wferi@debian.org>
Date:   Wed Sep 10 15:08:52 2025 +0200

    Add CVE ID to last changelog entry
    
    Gbp-Dch: Ignore