Author: bam Date: 2016-06-23 07:55:08 +0000 (Thu, 23 Jun 2016) New Revision: 42739
Modified: data/dla-needed.txt Log: Unclaim openssl Modified: data/dla-needed.txt =================================================================== --- data/dla-needed.txt 2016-06-23 06:51:44 UTC (rev 42738) +++ data/dla-needed.txt 2016-06-23 07:55:08 UTC (rev 42739) @@ -54,12 +54,13 @@ NOTE: maintainer would like help working on the updates but will handle the updates himself NOTE: 20160518175636.ga29...@roeckx.be -- -openssl (Brian May) +openssl NOTE: For CVE-2016-2177, some parts of the upstream patch do not apply NOTE: because the wheezy version is completely missing the checks being NOTE: fixed! Those checks should probably be added by cherry-picking NOTE: additional upstream changes. - NOTE: Feel free to offer Brian assistance or take-over if desired. + NOTE: Kurt Roeckx considers CVE-2016-2177 and CVE-2016-2178 to be low + NOTE: priority issues and will fix them after the next release of OpenSSL. -- php5 (Thorsten Alteholz) -- _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits