Hi, I've seen some typos of "Heartbleed" but "Hearbleed" is a good one :)
On Fri, May 02, 2014 at 12:20:55PM +0200, Lars Bonnesen wrote: > As far as I understand, OpenSSL 1.0.1g is needed in order to be home same > reg. heartbleed. > > I know that OpenBSD's OpenSSL is a fork, and this is maybe where the > confussion comes in... but can someone clarify for me the above? > Anyway, the common process in -stable is to fix bugs and not to upgrade to newer versions. We try to keep the patches as small as possible in there to avoid any side-effects, API, configuration or ABI changes. (You can even see this happened elsewhere like in Debian-stable where they fixed Heartbleed in 1.0.1e instead of upgrading to 1.0.1g) Reyk
