[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#764938: Bug#764496: RM: ssdeep/all suites -- ROM; non-distributable

On Wed, Oct 08, 2014 at 05:19:54PM +0200, Helmut Grohne wrote:
> Thorsten Alteholz pointed (#764357) out that ssdeep contains source from
> trn, which is licensed under a non-commercial license. It therefore is
> not DFSG free. What makes matters bad is that it links non-commercial
> source with GPL source (in libfuzzy2). Thus the resulting binaries
> become non-distributable.

For snapshot removal:

Only packages with versions older than 2.12 are affected, but even e.g.
1.1-2 is clearly affected.

 * Binary packages built from ssdeep need to be removed due to the GPL

 * ssdeep sources (prior to 2.12) contain non-commercial bits and are
   thus not DFSG free but they are distributable.

So if snapshot can contain non-DFSG free packages, only binary packages
need to be removed.


Reply to: