Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28

To: Andreas Metzler <ametzler@downhill.at.eu.org>
Cc: gnutls28@packages.debian.org, debian-release@lists.debian.org, pan@packages.debian.org
Subject: Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
From: Dominique Dumont <dod@debian.org>
Date: Wed, 20 Feb 2013 19:47:41 +0100
Message-id: <201302201947.41894.dod@debian.org>
In-reply-to: <20130210152640.GA3127@downhill.g.la>
References: <20130207105452.GA3153@downhill.g.la> <20130210142841.GD8837@radis.cristau.org> <20130210152640.GA3127@downhill.g.la>

Le dimanche 10 février 2013 16:26:40, Andreas Metzler a écrit :
> >> PS: My first idea was to simply pull gnutls28, providing guile-gnutls
> >> and gnutls-bin from gnutls26 again. However there is a reverse
> >> dependency (pan) on libgnutls28 in testing nowadays. Pan is not
> >> distributable currently http://bugs.debian.org/699892
> >> but that might still be fixed in time for the release.

I've fixed the license bug by dropping SSL support from pan. pan no longer 
depends on any libgnutls.

All the best

Dominique

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

Follow-Ups:
- Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>

References:
- Fixing "lucky 13" CVE-2013-0169 in gnutls28
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>
- Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
  - From: Julien Cristau <jcristau@debian.org>
- Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>

Prev by Date: Bug#700956: RM: djmount/0.71-5
Next by Date: Bug#701037: unblock: pan/0.139-2
Previous by thread: Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
Next by thread: Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
Index(es):
- Date
- Thread