diff --git a/docs/simplesamlphp-changelog.md b/docs/simplesamlphp-changelog.md index 2d0d4fc3cc1cc37100b70c7ee7adbc6a6c8ad3d6..af57bc11d1a9428cb9bfd190c179ee281ab6ab30 100644 --- a/docs/simplesamlphp-changelog.md +++ b/docs/simplesamlphp-changelog.md @@ -35,6 +35,23 @@ Released TBD ### Sqlauth * Changed from default-enabled to default-disabled. +## Version 1.15.2 + +Released 2018-01-31 + + * Resolved a Denial of Service security issue when validating timestamps in the SAML2 library. See [SSPSA 201801-01](https://simplesamlphp.org/security/201801-01). + * Resolved a security issue with the open redirect protection mechanism. See [SSPSA 201801-02](https://simplesamlphp.org/security/201801-02). + * Fix _undefined method_ error when using memcacheD. + +### `authfacebook` + * Fix compatibility with Facebook strict URI match. + +### `consent` + * Fix statistics not being gathered. + +### `sqlauth` + * Prevented a security issue with the connection charset used for MySQL backends. See [SSPSA 201801-03](https://simplesamlphp.org/security/201801-03). + ## Version 1.15.1 Released 2018-01-12