{
  "id": "DSA-4038-1",
  "summary": "shibboleth-sp2 - security update",
  "affected": [
    {
      "package": {
        "ecosystem": "Debian:8",
        "name": "shibboleth-sp2"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.5.3+dfsg-2+deb8u1"
            }
          ]
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Debian:9",
        "name": "shibboleth-sp2"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.6.0+dfsg1-4+deb9u1"
            }
          ]
        }
      ]
    }
  ],
  "aliases": [],
  "related": [],
  "upstream": [
    "DEBIAN-CVE-2017-16852",
    "CVE-2017-16852"
  ],
  "published": "2017-11-16T00:00:00Z",
  "modified": "2017-11-16T00:00:00Z",
  "details": "",
  "references": []
}