On Tue, 15 Feb 2022 14:13:38 +0100 Benoit Panizzon wrote:
> Package: chromium
> Version: 98.0.4758.80-1~deb11u1
> Severity: important
> X-Debbugs-Cc: t...@security.debian.org
>
> Dear Maintainer,
>
> It looks like some 'outdated' version of SSL has been completely
disabled with the newest update,
> without leaving an option to re-enable in chrome://flags
>
> Some network devices, to which no updated firmware is available, are
thus not accessible
> anymore.
>
> Please revert this security update to at least allow re-enabling
outdated ssl variants for
> cases where there is no way to update the server device.
>
> -Benoit-
>
I'm a bit confused by this bug report. Why do you need chromium
(presumably over https) talking to network hardware drivers? Or do you
mean you have older network hardware where the firmware exposes an https
port, and chromium no longer supports the older SSL protocols that the
network hardware web server is trying to negotiate? What specific SSL
versions are we talking about?