Bug#939526: buster-pu: package inn2/2.6.3-1+deb10u1

2019-10-12 Thread Julien Cristau
Control: tag -1 - moreinfo Control: tag -1 + confirmed On Sun, Oct 06, 2019 at 01:34:19AM +0200, Marco d'Itri wrote: > Control: retitle -1 buster-pu: package inn2/2.6.3-1+deb10u2 > > Bug #931256 explains in detail why TLS is broken in inn2 in buster, due > to the policies of newer openssl

Processed: Re: Bug#939526: buster-pu: package inn2/2.6.3-1+deb10u1

2019-10-12 Thread Debian Bug Tracking System
Processing control commands: > tag -1 - moreinfo Bug #939526 [release.debian.org] buster-pu: package inn2/2.6.3-1+deb10u2 Removed tag(s) moreinfo. > tag -1 + confirmed Bug #939526 [release.debian.org] buster-pu: package inn2/2.6.3-1+deb10u2 Added tag(s) confirmed. -- 939526:

Processed: Re: Bug#939526: buster-pu: package inn2/2.6.3-1+deb10u1

2019-10-05 Thread Debian Bug Tracking System
Processing control commands: > retitle -1 buster-pu: package inn2/2.6.3-1+deb10u2 Bug #939526 [release.debian.org] buster-pu: package inn2/2.6.3-1+deb10u1 Changed Bug title to 'buster-pu: package inn2/2.6.3-1+deb10u2' from 'buster-pu: package inn2/2.6.3-1+deb10u1'. -- 939526:

Bug#939526: buster-pu: package inn2/2.6.3-1+deb10u1

2019-10-05 Thread Marco d'Itri
Control: retitle -1 buster-pu: package inn2/2.6.3-1+deb10u2 Bug #931256 explains in detail why TLS is broken in inn2 in buster, due to the policies of newer openssl versions. As noticed by Adam D. Barratt, the original patch had a bug: it was then solved by the upstream maintainer and the fix

Bug#939526: buster-pu: package inn2/2.6.3-1~deb10u1

2019-09-18 Thread Marco d'Itri
On Sep 17, "Adam D. Barratt" wrote: > Shouldn't the assignment to "r" be outside of the conditional? Otherwise, if > ffdheX has previously been initialised, the function will return NULL rather > than the previously loaded buffer. Thank you, upstream confirmed. I did a new upload to unstable and

Bug#939526: buster-pu: package inn2/2.6.3-1~deb10u1

2019-09-17 Thread Adam D. Barratt
Control: tags -1 + moreinfo On 2019-09-05 22:41, Marco d'Itri wrote: [...] ++switch(level) ++{ ++case 0: /* Everything is permitted. */ ++case 1: /* DH keys shorter than 1024 bits are prohibited. */ ++case 2: /* DH keys shorter than 2048 bits are prohibited. */

Processed: Re: Bug#939526: buster-pu: package inn2/2.6.3-1~deb10u1

2019-09-17 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + moreinfo Bug #939526 [release.debian.org] buster-pu: package inn2/2.6.3-1+deb10u1 Added tag(s) moreinfo. -- 939526: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939526 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#939526: buster-pu: package inn2/2.6.3-1~deb10u1

2019-09-05 Thread Marco d'Itri
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Bug #931256 explains in detail why TLS is broken in inn2 in buster, due to the policies of newer openssl versions. This same patch has been in 2.6.3-2 in unstable/testing for two