On Sat, Jun 05, 2010 at 12:02:18AM +0200, Moritz Muehlenhoff wrote: > Package: openssl > Version: 0.9.8n-1 > Severity: grave > Tags: security > > Please see http://www.openssl.org/news/secadv_20100601.txt
The first one says: CMS is only present in OpenSSL 0.9.8h and later where it is disabled by default and 1.0.0 where it is enabled by default. I don't remember enabling it, so I asssume we're not affected by it, but I will take a closer look. The other one only affects 1.0, so that's also not a problem. But I'll upload a fixed version soon anyway. Kurt -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
