rpms/mod_auth_mellon
7
0
Fork 0
Code Issues Pull Requests Releases Activity
8b7f56ab2d
mod_auth_mellon/.gitignore
John Dennis d61f453f45 Update to new upstream 0.12.0 
- [CVE-2016-2145] Fix DOS attack (Apache worker process crash) due to
  incorrect error handling when reading POST data from client.

- [CVE-2016-2146] Fix DOS attack (Apache worker process crash /
  resource exhaustion) due to missing size checks when reading
  POST data.

In addition this release contains the following new features and fixes:

- Add MellonRedirectDomains option to limit the sites that
  mod_auth_mellon can redirect to. This option is enabled by default.

- Add support for ECP service options in PAOS requests.

- Fix AssertionConsumerService lookup for PAOS requests.
2016-03-09 09:40:05 -05:00

7 lines
183 B
Plaintext
Raw Blame History

/mod_auth_mellon-0.7.0.tar.gz
/mod_auth_mellon-0.8.0.tar.gz
/mod_auth_mellon-0.9.1.tar.gz
/mod_auth_mellon-0.10.0.tar.gz
/mod_auth_mellon-0.11.0.tar.gz
/mod_auth_mellon-0.12.0.tar.gz
Reference in New Issue View Git Blame Copy Permalink