Hey! On Sat, Feb 7, 2026 at 9:20 PM Gordon Messmer <[email protected]> wrote:
> On 2026-02-06 8:44 AM, Miroslav Suchý wrote: > > I recently discovered that protobuf has not been rebased to new > > version for 5 years!!! Sure, this is very special case and people > > tried, but I also wonder. How many such packages exists. > > > I recently noticed that OpenSSL wasn't tracking upstream releases for so > long that Fedora 42, an active release, is using a release of OpenSSL > that was EOL last November. > > Starting with the 3.5 release, non-LTS versions of OpenSSL will only be > supported for 13 months, so this is much more likely to occur in the > future. > > https://openssl-library.org/policies/releasestrat/index.html As the OpenSSL maintainer, I don't see any problems with this. 3.2 was a good release, and all Moderate+ CVE fixes were backported to Fedora 42. Fedora 43/44 will have OpenSSL 3.5, and Fedora 445 I think will have OpenSSL 4 which will not be LTS at all. -- Dmitry Belyavskiy
-- _______________________________________________ devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
