[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: CVE-2009-3555 not addressed in OpenSSL

Marsh Ray <marsh@extendedsubset.com> writes:

> As a long-term Debian user myself, I appeal to Debian's sense of
> enlightened self-interest and urge that RFC 5746 support be backported
> to stable.

FWIW, the latest stable GnuTLS version with RFC 5746 support is not even
in testing, so it won't be part of even the next stable.  It may be too
late for that in the release cycle though...


Reply to: