shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From jleleu <lel...@gmail.com>
Subject Re: Security update
Date Mon, 06 Oct 2014 13:16:12 GMT
Hi,

Any update on this?
Thanks.
Best regards,

Jérôme LELEU
Founder of CAS in the cloud: www.casinthecloud.com | Twitter: @leleuj
Chairman of CAS: www.jasig.org/cas | Creator of pac4j: www.pac4j.org

2014-09-17 22:12 GMT+02:00 Les Hazlewood-4 [via Shiro Developer] <
ml-node+s582600n7578467h37@n2.nabble.com>:

> Ack - thanks Jérôme.  I'll see if I can get to this tomorrow unless
> someone beats me to it!
>
> Les
>
>
> On Mon, Sep 15, 2014 at 7:54 AM, jleleu <[hidden email]
> <http://user/SendEmail.jtp?type=node&node=7578467&i=0>> wrote:
>
> > Hi,
> >
> > There is a security issue with the CAS client on which is based the CAS
> > support for Shiro (https://lists.wisc.edu/read/messages?id=33836937).
> >
> > The solution is to update the jar to version 3.2.2.
> >
> > The following JIRA has been created with the appropriate patch:
> > https://issues.apache.org/jira/browse/SHIRO-518.
> >
> > It should be applied to the 1.2.x branch and the trunk. It would be
> great to
> > have a new version 1.2.4 fixing this problem.
> >
> > Thanks.
> > Best regards,
> > Jérôme
> >
> >
> >
> >
> > --
> > View this message in context:
> http://shiro-developer.582600.n2.nabble.com/Security-update-tp7578464.html
> > Sent from the Shiro Developer mailing list archive at Nabble.com.
>
>
> ------------------------------
>  If you reply to this email, your message will be added to the discussion
> below:
>
> http://shiro-developer.582600.n2.nabble.com/Security-update-tp7578464p7578467.html
>  To start a new topic under Shiro Developer, email
> ml-node+s582600n582600h60@n2.nabble.com
> To unsubscribe from Shiro Developer, click here
> <http://shiro-developer.582600.n2.nabble.com/template/NamlServlet.jtp?macro=unsubscribe_by_code&node=582600&code=bGVsZXVqQGdtYWlsLmNvbXw1ODI2MDB8LTExNzY2MzcxMTY=>
> .
> NAML
> <http://shiro-developer.582600.n2.nabble.com/template/NamlServlet.jtp?macro=macro_viewer&id=instant_html%21nabble%3Aemail.naml&base=nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.naml.namespaces.BasicNamespace-nabble.view.web.template.NabbleNamespace-nabble.view.web.template.NodeNamespace&breadcrumbs=notify_subscribers%21nabble%3Aemail.naml-instant_emails%21nabble%3Aemail.naml-send_instant_email%21nabble%3Aemail.naml>
>




--
View this message in context: http://shiro-developer.582600.n2.nabble.com/Security-update-tp7578464p7578487.html
Sent from the Shiro Developer mailing list archive at Nabble.com.

Mime
View raw message