Re: Upcoming compatibility problem of oldstable (and older) vs. certificates from Let's Encrypt

To: Stefan Huehner <stefan@huehner.org>
Cc: debian-lts@lists.debian.org
Subject: Re: Upcoming compatibility problem of oldstable (and older) vs. certificates from Let's Encrypt
From: Christoph Berg <myon@debian.org>
Date: Fri, 10 Sep 2021 10:55:49 +0200
Message-id: <[🔎] 20210910085549.GA9558@master.debian.org>
In-reply-to: <[🔎] 20210909153149.GF6114@huehner.biz>
References: <[🔎] 20210909153149.GF6114@huehner.biz>

Re: Stefan Huehner
> Checking openssl / gnutls versions across releases:
> jessie		libssl1.0.0		1.0.1t
> 		libgnutls-deb0-28	3.3.8
> 
> stretch		libssl1.0.2		1.0.2u
> 		libssl1.1		1.1.0l
> 		libgnutls30		3.5.8
> 
> buster		libssl1.0.2		1.0.2u
> 		libssl1.1		1.1.1d
> 		libtnutls30		3.6.7
> 
> bullseye	libssl1.1		1.1.1k
> 		libgnutls30		3.7.1
> 
> Bug present in
> - openssl < 1.1.0
> - gnutls < 3.6.14

Note that stretch and later are using libssl1.1 by default, so only packages
who were actively patched to keep using 1.0 are affected.

Christoph

Reply to:

References:
- Upcoming compatibility problem of oldstable (and older) vs. certificates from Let's Encrypt
  - From: Stefan Huehner <stefan@huehner.org>

Prev by Date: Re: Upcoming compatibility problem of oldstable (and older) vs. certificates from Let's Encrypt
Next by Date: LTS report for August 2021 - Abhijith PA
Previous by thread: Re: Upcoming compatibility problem of oldstable (and older) vs. certificates from Let's Encrypt
Next by thread: LTS report for August 2021 - Abhijith PA
Index(es):
- Date
- Thread