[debian-mysql] Bug#699886: Bug#699886: TLS timing attack in yaSSL (Lucky 13)
Michael Stapelberg
stapelberg at debian.org
Sun Apr 14 13:25:08 UTC 2013
Hi Clint,
Clint Byrum <spamaps at debian.org> writes:
> Thanks Michael! I suspect that we will see 2.2.2d in one of the
> upcoming releases from Oracle. While I would prefer to ship wheezy
> with no known security bugs, I don't have much time to build and test
> a new package. If someone else wants to do that I will gladly sponsor
> it.
I just built MySQL with (an updated version of) my patch and it passes
all the build-time tests. Furthermore, I configured SSL and connected
using mysql(1) — SSL still works :-).
Should I NMU this package or do you want to upload it yourself? The
debdiff and latest version of my patch is attached.
--
Best regards,
Michael
-------------- next part --------------
A non-text attachment was scrubbed...
Name: yassl.patch
Type: text/x-diff
Size: 15681 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-mysql-maint/attachments/20130414/66bb804f/attachment-0001.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: mysql.debdiff
Type: application/octet-stream
Size: 17390 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-mysql-maint/attachments/20130414/66bb804f/attachment-0001.obj>
More information about the pkg-mysql-maint
mailing list