safebox/guacamole-client
4
0
Fork 0
mirror of https://github.com/gyurix1968/guacamole-client.git synced 2025-09-06 13:17:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

GUACAMOLE-1859: Update xmlsec to 2.2.6 (transitive dependency of SAML).

Browse Source
This commit is contained in:
Mike Jumper
2023-12-01 11:05:56 -08:00
parent df7309c1f3
commit 1b11b31045
5 changed files with 27 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
doc/licenses/apache-santuario-2.2.3/dep-coordinates.txt
View File

@@ -1 +0,0 @@
org.apache.santuario:xmlsec:jar:2.2.3

4
doc/licenses/apache-santuario-2.2.3/NOTICE → doc/licenses/apache-santuario-2.2.6/NOTICE
View File

@@ -1,5 +1,5 @@
Apache Santuario - XML Security for Java Apache Santuario - XML Security for Java
Copyright 1999-2021 The Apache Software Foundation Copyright 1999-2022 The Apache Software Foundation
This product includes software developed at This product includes software developed at
The Apache Software Foundation (http://www.apache.org/). The Apache Software Foundation (http://www.apache.org/).
@@ -10,3 +10,5 @@ Data Communications Systems, <http://www.nue.et-inf.uni-siegen.de/>.
The development of this software was partly funded by the European The development of this software was partly funded by the European
Commission in the <WebSig> project in the ISIS Programme. Commission in the <WebSig> project in the ISIS Programme.
This product contains software that is
copyright (c) 2021, Oracle and/or its affiliates.

2
doc/licenses/apache-santuario-2.2.3/README → doc/licenses/apache-santuario-2.2.6/README
View File

@@ -1,7 +1,7 @@
Apache Santuario (https://santuario.apache.org/) Apache Santuario (https://santuario.apache.org/)
------------------------------------------------- -------------------------------------------------
Version: 2.2.3 Version: 2.2.6
From: 'Apache Software Foundation' (https://www.apache.org/) From: 'Apache Software Foundation' (https://www.apache.org/)
License(s): License(s):
Apache v2.0 Apache v2.0

1
doc/licenses/apache-santuario-2.2.6/dep-coordinates.txt Normal file
View File

@@ -0,0 +1 @@
org.apache.santuario:xmlsec:jar:2.2.6

26
extensions/guacamole-auth-sso/modules/guacamole-auth-sso-saml/pom.xml
View File

@@ -74,15 +74,26 @@
<groupId>com.onelogin</groupId> <groupId>com.onelogin</groupId>
<artifactId>java-saml</artifactId> <artifactId>java-saml</artifactId>
<version>2.9.0</version> <version>2.9.0</version>
<!--
Replace vulnerable version of Woodstox until upstream
releases a version with fixed dependencies
-->
<exclusions> <exclusions>
<!--
Replace vulnerable version of Woodstox until upstream
releases a version with fixed dependencies
-->
<exclusion> <exclusion>
<groupId>com.fasterxml.woodstox</groupId> <groupId>com.fasterxml.woodstox</groupId>
<artifactId>woodstox-core</artifactId> <artifactId>woodstox-core</artifactId>
</exclusion> </exclusion>
<!--
Replace vulnerable version of xmlsec until upstream
releases a version with fixed dependencies
-->
<exclusion>
<groupId>org.apache.santuario</groupId>
<artifactId>xmlsec</artifactId>
</exclusion>
</exclusions> </exclusions>
</dependency> </dependency>
@@ -93,6 +104,13 @@
<version>5.4.0</version> <version>5.4.0</version>
</dependency> </dependency>
<!-- Apache XML Security for Java -->
<dependency>
<groupId>org.apache.santuario</groupId>
<artifactId>xmlsec</artifactId>
<version>2.2.6</version>
</dependency>
</dependencies> </dependencies>
</project> </project>