[Pkg-openssl-devel] Bug#630790: openssl: compile with rfc3779 and cms support
Francois Kooman
francois.kooman at surfnet.nl
Fri Jun 17 11:47:40 UTC 2011
Package: openssl
Version: 1.0.0d-2
Severity: wishlist
Would it be possible to compile OpenSSL with the flags:
"enable-rfc3779 enable-cms"
(This is required for among other things RPKI (see http://www.rpki.net)
The following security issue should be considered: http://security-tracker.debian.org/tracker/CVE-2010-0742. It says only versions before 1.0.0a are vulnerable, but still marks 1.0.0d in testing/unstable as being vulnerable?
In Red Hat (Fedora) these options are enabled (by default).
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.33
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Versions of packages openssl depends on:
ii libc6 2.13-4 Embedded GNU C Library: Shared lib
ii libssl1.0.0 1.0.0d-2 SSL shared libraries
ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime
openssl recommends no packages.
Versions of packages openssl suggests:
ii ca-certificates 20110421 Common CA certificates
-- no debconf information
More information about the Pkg-openssl-devel
mailing list