Package: src:linux Version: 4.7.8-1 Severity: serious perf uses SHA1 and MD5 implementations from OpenSSL's libcrypto if it is found at build time. Since perf is under GPLv2 without an OpenSSL exception, this isn't allowed in Debian.
We need to disable this feature or substitute implementations under another licence. Ben. -- System Information: Debian Release: stretch/sid APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'stable-updates'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.8.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)