Re: [stable] openssl rfc5746 / renegotiation support

To: debian-release@lists.debian.org, team@security.debian.org
Subject: Re: [stable] openssl rfc5746 / renegotiation support
From: Michael Gilbert <michael.s.gilbert@gmail.com>
Date: Fri, 19 Nov 2010 10:28:08 -0500
Message-id: <[🔎] 20101119102808.9a4b8a48.michael.s.gilbert@gmail.com>
In-reply-to: <[🔎] 20101119103548.GS10569@anguilla.noreply.org>
References: <[🔎] 20101116204806.GA14739@roeckx.be> <[🔎] 20101119103548.GS10569@anguilla.noreply.org>

On Fri, 19 Nov 2010 11:35:48 +0100, Peter Palfrader wrote:
> What's the verdict here?
> 
> Are we going to update openssl in stable (either via -security or with
> the next point release), and if yes, what are we doing with tor?

The decision was made a while back to fix this in an SPU.  Kurt put out
packages a few weeks ago and called for testing, but I've only seen one
response so far.  So I think that what needs to happen is a little more
testing?

Mike

Reply to:

Follow-Ups:
- Re: [stable] openssl rfc5746 / renegotiation support
  - From: Philipp Kern <pkern@debian.org>

References:
- openssl rfc5746 / renegotiation support
  - From: Kurt Roeckx <kurt@roeckx.be>
- Re: [stable] openssl rfc5746 / renegotiation support
  - From: Peter Palfrader <weasel@debian.org>

Prev by Date: systemtap RC bugfix
Next by Date: Re: Bug#596899: Please unblock ia32-libs/20101012
Previous by thread: Re: [stable] openssl rfc5746 / renegotiation support
Next by thread: Re: [stable] openssl rfc5746 / renegotiation support
Index(es):
- Date
- Thread