-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 07 Nov 2025 21:51:12 +0100 Source: lasso Binary: liblasso-perl liblasso-perl-dbgsym liblasso3 liblasso3-dbgsym liblasso3-dev python3-lasso python3-lasso-dbgsym Architecture: s390x Version: 2.8.1-1+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: s390x Build Daemon (zandonai) Changed-By: Salvatore Bonaccorso Description: liblasso-perl - Library for Liberty Alliance and SAML protocols - Perl bindings liblasso3 - Library for Liberty Alliance and SAML protocols - runtime library liblasso3-dev - Library for Liberty Alliance and SAML protocols - development kit python3-lasso - Library for Liberty Alliance and SAML protocols - Python bindings Changes: lasso (2.8.1-1+deb12u1) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * tests: test that inserted comment do not change node value and still validate signature * xml: prevent assignment of attribute value inside any attribute (CVE-2025-47151) * misc: check xmlSecGetNodeNsHref for possible NULL result (CVE-2025-46404) * xml: do not terminate on an unknown XML node type (CVE-2025-46705) Checksums-Sha1: 7436204391b70160574c9208392fcbfab1bb0ae9 10963 lasso_2.8.1-1+deb12u1_s390x-buildd.buildinfo 611264638cb7dd03fb41056e12ee20bd52308f47 168836 liblasso-perl-dbgsym_2.8.1-1+deb12u1_s390x.deb 7082f4db7d4019c5e4dba7d1f43f1196e6a39b27 770944 liblasso-perl_2.8.1-1+deb12u1_s390x.deb 8c3deada80c621ff43a0ed86d990c08716b721d5 790404 liblasso3-dbgsym_2.8.1-1+deb12u1_s390x.deb 6e1ec0974013a73fb8db7492aaa5ea6dc41c11fb 853864 liblasso3-dev_2.8.1-1+deb12u1_s390x.deb 3c096530a634a26d71703eea23a686a6f0c9a059 779508 liblasso3_2.8.1-1+deb12u1_s390x.deb 5829ca7c0a4354d67a03bfced16844460b289ec2 331648 python3-lasso-dbgsym_2.8.1-1+deb12u1_s390x.deb 30262783d14e86ea384ba6ca931a6b40ec4840e7 735652 python3-lasso_2.8.1-1+deb12u1_s390x.deb Checksums-Sha256: 9b24c356ef6dbb3a3e44f769fb06d0569c4c2dfb2c674e15f1a3dcf9f09b92d1 10963 lasso_2.8.1-1+deb12u1_s390x-buildd.buildinfo c28cf1de271eedd4ff41c0d60cf0c681c04e6fd82f46805ad15fe5196ebb984e 168836 liblasso-perl-dbgsym_2.8.1-1+deb12u1_s390x.deb 75abb4b1babd72223659126a98f560710480dce6eb4066a55026e2204c1e968f 770944 liblasso-perl_2.8.1-1+deb12u1_s390x.deb 98891a9899b835b4b26dc624df5f20eb15626af5e118a79c8090249983e92258 790404 liblasso3-dbgsym_2.8.1-1+deb12u1_s390x.deb 861f0cec8c51d4f7d81137f51f4877d07f85b75517f292f8ab16edcbad425fa0 853864 liblasso3-dev_2.8.1-1+deb12u1_s390x.deb 8f03f9ea66449f0cf876e35288a948cf9b3d67ad3017d8b22cf2017d72857689 779508 liblasso3_2.8.1-1+deb12u1_s390x.deb 2732b943700c471754d462932f27ac0ed7e7b47cad5ae05a6deb2e9fa92eb56b 331648 python3-lasso-dbgsym_2.8.1-1+deb12u1_s390x.deb 286781efdd750a45452270cd7f55a2208654c1138d2d6006f02f45edf2b628dc 735652 python3-lasso_2.8.1-1+deb12u1_s390x.deb Files: d3d6e1f2cf9919dec1a62226cdf69ad8 10963 libs optional lasso_2.8.1-1+deb12u1_s390x-buildd.buildinfo cbeccf3453fa1f48dc2ac8cdb93254e6 168836 debug optional liblasso-perl-dbgsym_2.8.1-1+deb12u1_s390x.deb 746cfd60fe868cba1924e4bbb36a3c09 770944 perl optional liblasso-perl_2.8.1-1+deb12u1_s390x.deb dd0e30b1e3f76cdeb807c3a9aad835e6 790404 debug optional liblasso3-dbgsym_2.8.1-1+deb12u1_s390x.deb f08ad66435dc03be2d0a015b35436794 853864 libdevel optional liblasso3-dev_2.8.1-1+deb12u1_s390x.deb d4620166e3357eb37f2af9aa310ed883 779508 libs optional liblasso3_2.8.1-1+deb12u1_s390x.deb c04b3c15040cc3dc93a3dd2d3b708ed9 331648 debug optional python3-lasso-dbgsym_2.8.1-1+deb12u1_s390x.deb 33cb85044abff2852c566866da31ef67 735652 python optional python3-lasso_2.8.1-1+deb12u1_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEENly2ANlpa4eeqnluvVOPI7pYNpgFAmkSTrYACgkQvVOPI7pY Npj1Vg/9HyF0H7wDbrcvcrgUmOOJUHUFbsJ4E3jAkICOVBqhjAxN4o65qt+xdy1g ceMAWC5hjsaw6OmzsRJ8xmoIN1Ok9PC4a+UwWtqallShSZ2aVrqGgYhUs11hr7jU Lk7TAF8HLK2htYA2XuzTBREsNrEeOzb7sFJYlWCZV1QUlOqeo17a2RArSIMB8esx OvFoGK82S8FnGJIwBeTiOaf4yyota3DYCYmABytnKH8CdI59sta9mHb7BVdh3vuH A5g5uZdgLEeV2xZbSJGG6l9t3XpkkOQo3wn+0nWI/7/yTuRZk+aw28vhCyNrG/mO eNf+bMoHXpVZ2XMgggwkXusrWnPpdwhknN8BuJbzo3Gqnny4ILN1sVkFUavokEQT LyL+h3MNt47reMm/lWo7qgzZGu5KXvCzfMmenTPYIaZmvwpliSf6/4jnVpB90GO+ IXe8C015SolLKf/d8xhtU9YECriNHuZ5m4qxuU8J/Kxao4/kQsTeQeUT1ZUJH5WG izBuxxlQp/ymTICu4lw1440Hs5oDLGyddZIZp/JEMaGUdTuWVku7OF0TLsfkC+B0 5ENoUmZsA/BgrQx9Qd/Qviq3lrI2/E50KGs8u4ayDccNbUpbexxDHqlEU2SZ5aE4 +Y2kaWgwpl1sr9lP0YskYT5MBvTwWmoo+HbBp+Wtun1+ZXEqKC4= =1tfE -----END PGP SIGNATURE-----