Bug#840643: jessie-pu: package cups/1.7.5-11+deb8u1

To: Didier 'OdyX' Raboud <odyx@debian.org>, 840643@bugs.debian.org
Subject: Bug#840643: jessie-pu: package cups/1.7.5-11+deb8u1
From: Julien Cristau <jcristau@debian.org>
Date: Sat, 17 Dec 2016 11:38:59 +0100
Message-id: <[🔎] 20161217103859.hrhoibmlvoutjui4@betterave.cristau.org>
Reply-to: Julien Cristau <jcristau@debian.org>, 840643@bugs.debian.org
In-reply-to: <147636893850.27684.16121728583857689282.reportbug@gyllingar>
References: <147636893850.27684.16121728583857689282.reportbug@gyllingar>

Control: tag -1 moreinfo

On Thu, Oct 13, 2016 at 16:28:58 +0200, Didier 'OdyX' Raboud wrote:

> We've been made aware that CUPS' SSL as of Jessie (and Wheezy, but I'll see
> this with the LTS team) is vulnerable to POODLE.
> 
> Here come:
> - patch;
> 	str4476-disable-sslv3-and-rc4-by-default.patch
> - git commit series;
> 	0001-Disable-SSLv3-and-RC4-by-default-to-address-POODLE-v.patch
> 	0002-Refresh-patches.patch
> 	0003-cups-1.7.5-11-deb8u2-Debian-release.patch
> - and debdiff
> 	cups_1.7.5-11+deb8u2.debdiff
> 
The debdiff is the one we tend to look at, but it looks like it was not
attached.

Cheers,
Julien

Reply to:

Follow-Ups:
- Bug#840643: jessie-pu: package cups/1.7.5-11+deb8u1
  - From: Didier 'OdyX' Raboud <odyx@debian.org>

Prev by Date: Bug#845304: transition: libxtables12
Next by Date: Processed: Re: Bug#840643: jessie-pu: package cups/1.7.5-11+deb8u1
Previous by thread: Bug#833865: jessie-pu: package youtube-dl/2014.08.05-1+deb8u1
Next by thread: Processed: Re: Bug#840643: jessie-pu: package cups/1.7.5-11+deb8u1
Index(es):
- Date
- Thread