Your message dated Sun, 23 Apr 2017 18:49:08 +0000 with message-id <e1d2mzi-000czs...@fasolo.debian.org> and subject line Bug#766397: fixed in emacs25 25.1+1-4 has caused the Debian Bug report #766397, regarding emacs/gnus: Uses s_client to for SSL. to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 766397: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=766397 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: emacs23 Severity: serious Tags: security Hi, It has come to my attention that Gnus is using s_client to set up SSL connections to retrieve email. Please stop using that. s_client is a debug tool, it does not set up a secure connection, it ignores all errors and just continues. It also doesn't do checks it should be doing. This is all documented behaviour. Please get rid of all documentation, configurations and examples that tell you how to set it up using s_client. I've also seen examples adding -ssl2 and -ssl3 which is really really broken. Kurt
--- End Message ---
--- Begin Message ---Source: emacs25 Source-Version: 25.1+1-4 We believe that the bug you reported is fixed in the latest version of emacs25, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 766...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Rob Browning <r...@defaultvalue.org> (supplier of updated emacs25 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 23 Apr 2017 11:49:52 -0500 Source: emacs25 Binary: emacs25-lucid emacs25-lucid-dbg emacs25-nox emacs25-nox-dbg emacs25 emacs25-dbg emacs25-bin-common emacs25-common emacs25-el Architecture: source amd64 all Version: 25.1+1-4 Distribution: unstable Urgency: medium Maintainer: Rob Browning <r...@defaultvalue.org> Changed-By: Rob Browning <r...@defaultvalue.org> Description: emacs25 - GNU Emacs editor (with GTK+ GUI support) emacs25-bin-common - GNU Emacs editor's shared, architecture dependent files emacs25-common - GNU Emacs editor's shared, architecture independent infrastructur emacs25-dbg - Debugging symbols for emacs25 emacs25-el - GNU Emacs LISP (.el) files emacs25-lucid - GNU Emacs editor (with Lucid GUI support) emacs25-lucid-dbg - Debugging symbols for emacs25-lucid emacs25-nox - GNU Emacs editor (without GUI support) emacs25-nox-dbg - Debugging symbols for emacs25-nox Closes: 766397 Changes: emacs25 (25.1+1-4) unstable; urgency=medium . * Don't offer/use openssl s_client by default: "s_client is a debug tool, it does not set up a secure connection, it ignores all errors and just continues. It also doesn't do checks it should be doing. This is all documented behaviour." -- Kurt Roeckx Add 0009-openssl-s_client-is-no-longer-a-default-for-ssl-conn.patch to fix the problem. Thanks to Kurt Roeckx for reporting the issue. (Closes: 766397) Checksums-Sha1: 923dba3ec9e4d67e0de734344e23ea3cf730d11b 2842 emacs25_25.1+1-4.dsc 43abf11320fb4704766af1e5605f5bafa4f00e5d 50808 emacs25_25.1+1-4.debian.tar.xz 30bacb1e980cdccce425a9169415ae4ea091de57 281356 emacs25-bin-common-dbgsym_25.1+1-4_amd64.deb 304165bcdf2125b742f048f51cc675fbf02e743c 147422 emacs25-bin-common_25.1+1-4_amd64.deb 0481864daf4afd94f858f4364b64b60e522e0c54 13157202 emacs25-common_25.1+1-4_all.deb 4037d1cb05c40fdad027d15dd76a4e95420f61c3 5199090 emacs25-dbg_25.1+1-4_amd64.deb ef3c65ce0bb2b81226a2f6b4b2b084aee2612386 15656892 emacs25-el_25.1+1-4_all.deb aedb88bb937e093d177227f297b08e2a5ac5a892 5295972 emacs25-lucid-dbg_25.1+1-4_amd64.deb 02abc0325795b2044a737dea5fa0bf358d39a240 3510344 emacs25-lucid_25.1+1-4_amd64.deb 89c063353df5d7c367f79d1d1355fcf7cbad2751 3665256 emacs25-nox-dbg_25.1+1-4_amd64.deb 44e786cbb92e09198d8f9e7eff80e6b51c94e6df 3084092 emacs25-nox_25.1+1-4_amd64.deb 43638d4ca993b38000cd052b42c116961ef7a05a 19268 emacs25_25.1+1-4_amd64.buildinfo 66524a96d62607f73c8eddf5d3e5af8560e1e725 3508260 emacs25_25.1+1-4_amd64.deb Checksums-Sha256: 4e8940010e7e9289cd46aabd183ae22979f31a0f0951bfc717026111bd712142 2842 emacs25_25.1+1-4.dsc 7b76d99374c1578e94665bf04539d66ba6949f1784854c88d1c33e9643df6be3 50808 emacs25_25.1+1-4.debian.tar.xz ee27ccd89facf011a458d2d5b875a00900e76d41110aec4e26e2b65a01f0be99 281356 emacs25-bin-common-dbgsym_25.1+1-4_amd64.deb fa122c736079dabe571c97cc8e9e12cfcfe9b2682c6e6702154810fe813398e1 147422 emacs25-bin-common_25.1+1-4_amd64.deb 9aade78602b233f64db2c18f6aa323c3028cb5efb0f3c4320850f665b613bbb2 13157202 emacs25-common_25.1+1-4_all.deb a7f4d59064208772a93cc55e58e790f9092a958452ee747aac1b15445f43ecb6 5199090 emacs25-dbg_25.1+1-4_amd64.deb df09fb8009220811332f09dedc304b474bc66e73fcaed8f7e3b54008b07f9877 15656892 emacs25-el_25.1+1-4_all.deb 7fdec50a4902cfd82e9380729bdb2f08f69b8db0a3dd6992121df1424e4a0179 5295972 emacs25-lucid-dbg_25.1+1-4_amd64.deb 60842b84d97444132cc1b9c1cc9555d35606234688d0b51a76a9d0d5703db828 3510344 emacs25-lucid_25.1+1-4_amd64.deb 97cbb7523422fa4e707ff209dca776453c319ca99a94404a829bb6d8afd5f9ae 3665256 emacs25-nox-dbg_25.1+1-4_amd64.deb ee6b3547e1cff0825ac4d453c0aa647cb1267fdd76a4b11b6db35c8369e79536 3084092 emacs25-nox_25.1+1-4_amd64.deb 5bed045a7a5f70bce6a71860e50451b914479f0db90809b4bb83c4e977c7ddb9 19268 emacs25_25.1+1-4_amd64.buildinfo 469594fc73229db31f4561efb5bf712e04c681b3e0e4293b16826e695349594d 3508260 emacs25_25.1+1-4_amd64.deb Files: 9ed66c0e552dc8fe19ddd7894d8003bb 2842 editors optional emacs25_25.1+1-4.dsc ed4323a27d35312d0c5cfa0fe9bda3af 50808 editors optional emacs25_25.1+1-4.debian.tar.xz 9aceb9dd1014e4c11ee2c4eb37a5369e 281356 debug extra emacs25-bin-common-dbgsym_25.1+1-4_amd64.deb ec6bc17be08f0c0dbc7851b3e5e09446 147422 editors optional emacs25-bin-common_25.1+1-4_amd64.deb a9f046139cb79bcc99eac4f27783b9be 13157202 editors optional emacs25-common_25.1+1-4_all.deb bae3f3eae5fe2cdd68abb8b40a431b2c 5199090 debug extra emacs25-dbg_25.1+1-4_amd64.deb b42a61a97ef7ad18d728310b927959bd 15656892 editors optional emacs25-el_25.1+1-4_all.deb 59e9e1b48715f5d162db48dae4daf8e1 5295972 debug extra emacs25-lucid-dbg_25.1+1-4_amd64.deb 8e01c01330da6f7fa82f0817a7486d64 3510344 editors optional emacs25-lucid_25.1+1-4_amd64.deb 6e9ec57ea3fc34f67dba048e4c54b25f 3665256 debug extra emacs25-nox-dbg_25.1+1-4_amd64.deb b0ec334a6952ce2794529a6fbf743bc0 3084092 editors optional emacs25-nox_25.1+1-4_amd64.deb 0171af3dbb6c9884c537d328bfef4522 19268 editors optional emacs25_25.1+1-4_amd64.buildinfo c4e6435e63873058d1dde82ebc32d6a2 3508260 editors optional emacs25_25.1+1-4_amd64.deb -----BEGIN PGP SIGNATURE----- iQJJBAEBCAAzFiEEPTFSABe5ruOuhW+97vEWxVpaQvEFAlj88DoVHHJsYkBkZWZh dWx0dmFsdWUub3JnAAoJEO7xFsVaWkLx0rkP/j+N3NeeOmWHkc68kKwjnqQKshbD uC4U/6Lj7Me1VWC3LsLpkTCu6+jcYimVFjT2IDLr2pxBBe53UmvarFP2xzcsFYsU gTsyaiM0PMRAO48uHYnck940HPJ5jaLfKi3IR6TE+GC3CufAJq+G0z1Qm8T95SGB JX/rO1rJnyQubovY5bDzUsFbKh9QtSh/bBZsBWZJksuiTzGIpLoQyOHmvY7KSSld zqFZ7nIeeq18xGmv0zmatb/QRu/kKAlQOra3vhn7tElsBJnFzEEOLBxfG4spnvBO tNEBjlg67qWdlcTTCAteDogIrV8zPqBr8pz26nwUv+VfKAj+Shs3d7O5Z6PBoMo8 w+1w1nJxuSdrrEndP1IcViw6ubdx0fRnAM9OUFfZER4diMO3h8nGvXvVyzac1TMK iwXNO5hDE63hM7iLvkyoJjsCPi7GvPxpsy513BglNtDHLWqeuq9dDME6tT9YScfc NQ4LNQqD7b1ap3g0JmXkXZqikxXbCugQ/tJzNr00Ptkcx3Qoq3oYo1+JylAkuamW KLpkXMuRLx86qM4RggO8ZpFF7MhRVEBqkrDVwLVJGI1ZFSAYon4pYoeyuckz0O7f 3W1Kkhyfj9fThk6ZtbaeD6i+D6670INqa2JrgYdj1JRdfBkSI+LUm20a1gSxrSSZ twlZ/QloMSPICFEz =Ze8v -----END PGP SIGNATURE-----
--- End Message ---
