[Pkg-telepathy-maintainers] Bug#706094: telepathy-idle: does not verify TLS certificates properly

Yves-Alexis Perez corsac at debian.org
Wed Apr 24 19:36:27 UTC 2013


On mer., 2013-04-24 at 17:39 +0100, Simon McVittie wrote:
> Security team: wheezy is vulnerable to this, and has a somewhat older
> upstream version than unstable (so it can't migrate that way). How do
> you want us to deal with this? I've re-attached the proposed patch for
> wheezy for your reference.

I guess TPU can be used for that, please synchronize with the release
team. I agree it's not material for a DSA.

Regards,
-- 
Yves-Alexis
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/pkg-telepathy-maintainers/attachments/20130424/fabdf322/attachment.pgp>


More information about the Pkg-telepathy-maintainers mailing list