On 2013-04-22 20:02, Salvatore Bonaccorso wrote: > Unfortunately stunnel4 package cannot be updated to latest upstream > version due to the freeze and wheezy beeing relased very soon. So the > version based on 4.53 needs to be patched. I think the patch correctly addresses this specific security issue.
On the other hand 4.53 is outdated and it lacks several important stability bugfixes I implemented during the last year, e.g. half-close handling, signal handling, memory leaks, file descriptor leaks, and randoms stalls in libwrap support. I would really love 4.56 to make it into wheezy, or *at least* into sid. It's a pity Debian users cannot benefit from numerous hours of my work spent improving stunnel. http://www.stunnel.org/sdf_ChangeLog.html Best regards, Michal Trojnara
signature.asc
Description: OpenPGP digital signature
