MFH: r454256 r454371

Shibboleth Service Provider Security Advisory [15 November 2017]

An updated version of the Shibboleth Service Provider software
is available which corrects a critical security issue in the
"Dynamic" metadata provider plugin.

Deployers making use of the affected feature should apply the
relevant update at the soonest possible moment.

This also includes the fix to xmltooling security/apache-xml-security-c
that was introduced with the first version of the security patch.

Security: b4b7ec7d-ca27-11e7-a12d-6cc21735f730

Approved by: portmgr