Bug#764938: Bug#764496: RM: ssdeep/all suites -- ROM; non-distributable
On Wed, Oct 08, 2014 at 05:19:54PM +0200, Helmut Grohne wrote:
> Thorsten Alteholz pointed (#764357) out that ssdeep contains source from
> trn, which is licensed under a non-commercial license. It therefore is
> not DFSG free. What makes matters bad is that it links non-commercial
> source with GPL source (in libfuzzy2). Thus the resulting binaries
> become non-distributable.
For snapshot removal:
Only packages with versions older than 2.12 are affected, but even e.g.
1.1-2 is clearly affected.
* Binary packages built from ssdeep need to be removed due to the GPL
* ssdeep sources (prior to 2.12) contain non-commercial bits and are
thus not DFSG free but they are distributable.
So if snapshot can contain non-DFSG free packages, only binary packages
need to be removed.