Fedora 22: opensaml-java-openws Security Update
Summary
The OpenWS library provides a growing set of tools to work with web services at
a low level. These tools include classes for creating and reading SOAP
messages, transport-independent clients for connecting to web services,
and various transports for use with those clients.
Update Information:
* OpenSAML Java: HTTPS Connections Via HTTP Resources Do Not Perform Hostname Verification
Change Log
* Tue Jun 16 2015 Marek Goldmann
References
[ 1 ] Bug #1131823 - CVE-2014-3603 OpenSAML Java: HTTPS Connections Via HTTP Resources Do Not Perform Hostname Verification https://bugzilla.redhat.com/show_bug.cgi?id=1131823
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update opensaml-java-openws' at the command line. For more information, refer to "Managing Software with yum", available at .