Hello,
On 09/09/2021 19:11, Stefan Huehner wrote:
> looking a tiny bit at changelog for gnutls buster it looks like the backport
> was already done :)
>
> 3.6.7-4+deb10u5
> the _16 + _17 patches from the description sound like what i understand the
> fix is (explore alternative verification
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
August was my 42nd month as a Debian LTS paid contributor. I had 19h
(both assigned and carried over from last month). I could only spend
4h and gave back rest to the pool.
* pywps: Fixed CVE-2021-39371 and converted a test from pytest to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
- -
Debian LTS Advisory DLA-2756-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Emilio Pozuelo Monfort
September 10, 2021
Re: Stefan Huehner
> Checking openssl / gnutls versions across releases:
> jessielibssl1.0.0 1.0.1t
> libgnutls-deb0-28 3.3.8
>
> stretch libssl1.0.2 1.0.2u
> libssl1.1 1.1.0l
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 08 Sep 2021 13:37:36 +0200
Source: firefox-esr
Architecture: source
Version: 78.14.0esr-1~deb9u1
Distribution: stretch-security
Urgency: medium
Maintainer: Maintainers of Mozilla-related packages
Changed-By: Emilio Pozuelo