Package: openssl Version: 1.0.0d-2 Severity: wishlist
Would it be possible to compile OpenSSL with the flags: "enable-rfc3779 enable-cms" (This is required for among other things RPKI (see http://www.rpki.net) The following security issue should be considered: http://security-tracker.debian.org/tracker/CVE-2010-0742. It says only versions before 1.0.0a are vulnerable, but still marks 1.0.0d in testing/unstable as being vulnerable? In Red Hat (Fedora) these options are enabled (by default). -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.33 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages openssl depends on: ii libc6 2.13-4 Embedded GNU C Library: Shared lib ii libssl1.0.0 1.0.0d-2 SSL shared libraries ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime openssl recommends no packages. Versions of packages openssl suggests: ii ca-certificates 20110421 Common CA certificates -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org