found 603709 0.9.8g-15 close 603709 0.9.8g-15+lenny9 thanks On Tue, Nov 16, 2010 at 05:26:33PM +0000, Marcos Marado wrote: > Package: openssl > Version: 0.9.8g-15+lenny8 > Severity: normal > > According to http://www.openssl.org/news/secadv_20101116.txt openssl 0.9.8g > (in > lenny) and and 0.9.8o (in squeeze and sid) are vulnerable to CVE-2010-3864.
I was already aware of the problem. I just uploaded the package for stable to the security archive. Will upload a new version for unstable soon too. PS: Please make sure you file bugs against proper versions. Marking it with "0.9.8g-15+lenny8" will indicate that 0.9.8o is not affected because the 2 versions split at 0.9.8g-15. Kurt -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
