Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28

To: pkg-gnutls-maint@lists.alioth.debian.org, debian-release@lists.debian.org
Subject: Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
From: Julien Cristau <jcristau@debian.org>
Date: Sun, 14 Apr 2013 20:26:24 +0200
Message-id: <[🔎] 20130414182624.GW5725@radis.cristau.org>
In-reply-to: <[🔎] 20130414163856.GA3316@downhill.g.la>
References: <20130223175342.GS5761@radis.cristau.org> <20130317150029.GB3610@downhill.g.la> <20130317181919.GS5840@radis.cristau.org> <20130317182610.GD3610@downhill.g.la> <20130318190517.GW5840@radis.cristau.org> <20130319190638.GC3830@downhill.g.la> <20130320180918.GA3316@downhill.g.la> <20130331123556.GA3233@downhill.g.la> <20130331202236.GJ6490@radis.cristau.org> <[🔎] 20130414163856.GA3316@downhill.g.la>

On Sun, Apr 14, 2013 at 18:38:56 +0200, Andreas Metzler wrote:

> On 2013-03-31 Julien Cristau <jcristau@debian.org> wrote:
> > On Sun, Mar 31, 2013 at 14:35:56 +0200, Andreas Metzler wrote:
> > > Could you please remove gnutls28 3.0.22-3 from *unstable* to make it
> > > possible to start testing the transition?
>  
> > We don't handle unstable.  You'll have to file a bug against
> > ftp.debian.org for that.
> 
> Hello,
> 
> We have managed to do without removal from unstable by using a
> slightly different faked version number. Letting gnutls26 propagate to
> testing and removing gnutls28 should now be possible.
> 
> unblock gnutls26/2.12.20-6
> RM: gnutls28/3.0.20-3
> 
Thanks.  Hints added.

Cheers,
Julien

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>

Prev by Date: Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
Next by Date: NEW changes in stable-new
Previous by thread: Re: Fixing "lucky 13" CVE-2013-0169 in gnutls28
Next by thread: Re: Bug#704748: Not a practical issue (could even be considered a feature...:-))
Index(es):
- Date
- Thread