python-pysaml2 (2.0.0-1+deb8u1) jessie-security; urgency=medium
* Fix XXE issues on anything where pysaml2 parses XML directly:
- CVE-2016-10127: backporting upstream patch (Closes: #850716).
- add python-defusedxml as runtime depends.
- switch debian/gbp.conf to use debian/jessie as packaging branch.
* Add python-pymongo as (build-)depends.
-- Thomas Goirand <email address hidden> Mon, 09 Jan 2017 16:54:24 +0100