Package: polarssl Severity: grave Tags: security Justification: user security hole
https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2013-04 https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2013-05 CVE-2013-5915 doesn't sound backportable. Since polarssl has no reverse deps in Wheezy I suggest we update stable to 1.2.9. What do you think? Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org