Bug#1109207: bookworm-pu: package openssl/3.0.17-1~deb12u1

To: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Cc: 1109207@bugs.debian.org
Subject: Bug#1109207: bookworm-pu: package openssl/3.0.17-1~deb12u1
From: Simon Josefsson <simon@josefsson.org>
Date: Sun, 13 Jul 2025 15:10:50 +0200
Message-id: <[🔎] 87zfd8w811.fsf@biskvi.sjd.se>
Reply-to: Simon Josefsson <simon@josefsson.org>, 1109207@bugs.debian.org
In-reply-to: <20250713125321.rrleliCe__4432.86083625338$1752411358$gmane$org@breakpoint.cc> (Sebastian Andrzej Siewior's message of "Sun, 13 Jul 2025 14:53:21 +0200")
References: <20250713125321.rrleliCe__4432.86083625338$1752411358$gmane$org@breakpoint.cc> <[🔎] 20250713125321.rrleliCe@breakpoint.cc>

Sebastian Andrzej Siewior <sebastian@breakpoint.cc> writes:

> --- openssl-3.0.16/CHANGES.md	2025-02-11 15:47:41.000000000 +0100
> +++ openssl-3.0.17/CHANGES.md	2025-07-01 14:11:11.000000000 +0200
...
> + * SSLv3 is by default disabled at build-time. Builds that are not
> +   configured with "enable-ssl3" will not support SSLv3.

I'm all for disabling SSLv3, but could you clarify if this package
update actually disable SSLv3 by default or merely fix the CHANGES to
accurately describe a change of defaults that happened earlier?

/Simon

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- Bug#1109207: bookworm-pu: package openssl/3.0.17-1~deb12u1
  - From: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>

Prev by Date: Bug#1109207: bookworm-pu: package openssl/3.0.17-1~deb12u1
Next by Date: Bug#1109211: unblock: python-eventlet/0.39.1-2
Previous by thread: Processed: bookworm-pu: package openssl/3.0.17-1~deb12u1
Next by thread: Bug#1109207: bookworm-pu: package openssl/3.0.17-1~deb12u1
Index(es):
- Date
- Thread