From ebde63221b8d121a4ec21609a98ea872b3c7286b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jaime=20Pe=CC=81rez=20Crespo?= <jaime.perez@uninett.no> Date: Wed, 31 Jan 2018 12:40:42 +0100 Subject: [PATCH] Update changelog with information from newly released 1.15.2. --- docs/simplesamlphp-changelog.md | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) diff --git a/docs/simplesamlphp-changelog.md b/docs/simplesamlphp-changelog.md index 2d0d4fc3c..af57bc11d 100644 --- a/docs/simplesamlphp-changelog.md +++ b/docs/simplesamlphp-changelog.md @@ -35,6 +35,23 @@ Released TBD ### Sqlauth * Changed from default-enabled to default-disabled. +## Version 1.15.2 + +Released 2018-01-31 + + * Resolved a Denial of Service security issue when validating timestamps in the SAML2 library. See [SSPSA 201801-01](https://simplesamlphp.org/security/201801-01). + * Resolved a security issue with the open redirect protection mechanism. See [SSPSA 201801-02](https://simplesamlphp.org/security/201801-02). + * Fix _undefined method_ error when using memcacheD. + +### `authfacebook` + * Fix compatibility with Facebook strict URI match. + +### `consent` + * Fix statistics not being gathered. + +### `sqlauth` + * Prevented a security issue with the connection charset used for MySQL backends. See [SSPSA 201801-03](https://simplesamlphp.org/security/201801-03). + ## Version 1.15.1 Released 2018-01-12 -- GitLab