On Sat, 12 Nov 2016 18:45:31 +0100, Moritz Muehlenhoff wrote: > On Sat, Nov 12, 2016 at 04:50:25PM +0000, gregor herrmann wrote: > > Source: libpoe-filter-ssl-perl > > * Use OpenSSL 1.0.2 for the time being. (Closes: #828408) > > Don't close such bugs. You used a workaround, but the bug still > persists. If there are valid exceptions not to move to openssl 1.1, > they should rather be tagged stretch-ignore.
Thanks for your mail. Indeed I was a bit unsure what to do with this bug (closes or downgrade+unblock or close+clone ...), and I've seen this discussed on #debian-release earlier today but I didn't see a consensus or clear guidance there. I'm happy to have the release team / security team / OpenSSL maintainers change the bug status or tell me what the preferred method is, as soon is there is a clear consensus. Cheers, gregor -- .''`. https://info.comodo.priv.at/ - Debian Developer https://www.debian.org : :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D 85FA BB3A 6801 8649 AA06 `. `' Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe `- NP: Donovan: Barabajagal
signature.asc
Description: Digital Signature
