Shibboleth Service Provider V3.0.0 now available
Cantor, Scott
cantor.2 at osu.edu
Wed Jul 18 09:45:10 EDT 2018
> I assume there is no known vulnerability in V2.6.1 because "2.6.1" is green:
> https://wiki.shibboleth.net/confluence/display/SHIB2/SecurityAdvisories
> Right?
Nothing beyond Xerces itself being a rotted mess (but it's only a slightly less rotted mess now so that's not exactly a huge benefit).
With at least a couple of major bugs reported, it appears holding off for a 3.0.1 is wise but I probably will push it out today anyway, once I'm in the headspace it doesn't take long to get releases done.
-- Scott
More information about the users
mailing list