[Pkg-crosswire-devel] Bug#890289: libmbedtls

Teus Benschop teusjannette at gmail.com
Mon Feb 19 12:31:11 GMT 2018


Yes, you are right that embedding this library presents a security risk, in
particular when the package plus its embedded library gets older and new
security issues are found in mbedtls.
The segmentation fault now caused by mbedtls was the reason this code was
embedded, it didn't have a segmentation fault then.
Upstream is looking into this how to solve this.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-crosswire-devel/attachments/20180219/a6705038/attachment.html>


More information about the Pkg-crosswire-devel mailing list