Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10

To: Dominic Hargreaves <dom@earth.li>, 781965@bugs.debian.org
Subject: Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 05 Apr 2015 19:46:26 +0100
Message-id: <[🔎] 1428259586.30466.10.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 781965@bugs.debian.org
In-reply-to: <[🔎] 20150405180827.535.1986.reportbug@callisto.larted.org.uk>
References: <[🔎] 20150405180827.535.1986.reportbug@callisto.larted.org.uk>

Control: tags -1 + confirmed

On Sun, 2015-04-05 at 19:08 +0100, Dominic Hargreaves wrote:
> As per #779082, ircd-hybrid in wheezy (when recompiled to support
> SSL) currently listens on SSLv3, which could be exposing a risk of a
> POODLE attack.
> 
> The patch to disable SSLv3 is simple, and I've attached a tested package
> diff. The Debian security team treats this as a no-dsa issue.

Please go ahead, thanks.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
  - From: Dominic Hargreaves <dom@earth.li>

References:
- Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
  - From: Dominic Hargreaves <dom@earth.li>

Prev by Date: Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
Next by Date: Processed: Re: Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
Previous by thread: Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
Next by thread: Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
Index(es):
- Date
- Thread