On Fri, Nov 7, 2014 at 22:49:19 +0100, Philipp Huebner wrote: > Hi, > > I intend to upload a new revision of ejabberd-14.07 to unstable some > time next week fixing these bugs: > > #764974 serious - postinst uses /usr/share/doc content (Policy 12.3) > #767535 important - CVE-2014-8760 > #768462 important - log files get lost on first rotation > > IMO ejabberd with these fixes should definitely go into Jessie. > > Furthermore I'm not sure whether to disable SSLv3 in the default > configuration with that upload or not. What is your opinion? > Probably a good idea if it's not too invasive. Cheers, Julien
Attachment:
signature.asc
Description: Digital signature