config/config.php | 18 12 + 6 - 0 !
1 file changed, 12 insertions(+), 6 deletions(-)

 debian-specific paths and defaults

vendor/robrichards/xmlseclibs/xmlseclibs.php | 6 5 + 1 - 0 !
1 file changed, 5 insertions(+), 1 deletion(-)

 add a workaround to canonicalization to address performance
 problems in PHP >= 5.2.
 https://bugs.php.net/bug.php?id=53655
 https://simplesamlphp.org/metaprocessing

vendor/simplesamlphp/saml2/src/SAML2/Utils.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

lib/SimpleSAML/XML/Validator.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

lib/SimpleSAML/Auth/TimeLimitedToken.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

modules/multiauth/lib/Auth/Source/MultiAuth.php | 8 7 + 1 - 0 !
1 file changed, 7 insertions(+), 1 deletion(-)

 [patch] bugfix: allow only valid auth sources in multiauth.

The configuration of the MultiAuth authentication source specifies the auth sources that the user is presented with when asked for authentication. However, there was no proper check for the auth source selected by the user to ensure it is one of those allowed for MultiAuth.

lib/SimpleSAML/Auth/ProcessingChain.php | 6 6 + 0 - 0 !
1 file changed, 6 insertions(+)

---

modules/InfoCard/lib/RP/Zend_InfoCard_Xml_Security.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

modules/consentAdmin/templates/consentadmin.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

lib/SimpleSAML/XML/Validator.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [patch] make sure calls to in_array() use strict comparisons.

vendor/simplesamlphp/saml2/src/SAML2/Utils.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

modules/sqlauth/lib/Auth/Source/SQL.php | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

vendor/simplesamlphp/saml2/src/SAML2/Utils.php | 9 9 + 0 - 0 !
1 file changed, 9 insertions(+)

---