On Mon, July 2, 2012 13:38, Silvio Cesare wrote: > On Mon, Jul 2, 2012 at 8:27 PM, Bernd Zeimetz <be...@bzed.de> wrote:
>> The ia32-libs stuff are all false positives (assuming the package was >> updated after the security fixes came out, I'm not 100% sure about that >> :) And the openssl source is expected to contain the openssl source. > Last I checked, ia32-libs on squeeze didn't have the openssl patches for > 0.9.8. I may have to check more thoroughly to be sure. Yes. ia32-libs is usually only updated shortly before stable point releases, so there's commonly a small delta of security updates that have not been incorporated into it, yet. This is hence 'expected'. Cheers, Thijs -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/0b3925476909d758f14bd272308c641a.squir...@wm.kinkhorst.nl