Add CVE for the world-readable certificate key to the changelog entry
of 2.3.1+dfsg-2 so that the security tracker knows it was fixed.
shibboleth-sp2 (2.3.1+dfsg-2) unstable; urgency=low
* Modify shib-keygen to create the new certificate key group-readable by
- _shibd and not world-readable. (Closes: #571631)
+ _shibd and not world-readable. (Closes: #571631, CVE-2010-2450)
* Force source format 1.0 for now since it makes backporting easier.
* Update debhelper compatibility level to V7.
- Use dh_prep instead of dh_clean -k.