-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-08-16 13:26:28 UTC
-
Revision ID:
james.westby@ubuntu.com-20100816132628-lg0fthkqbb8qyyzw
Tags: 2.2.12-1ubuntu2.3
* debian/patches/905_sslinsecurerenegotiation-directive.dpatch: once
openssl gets updated to fix CVE-2009-3555, server renegotiations with
unpatched clients will fail. This patch adds the ability to revert to
the previous unsafe behaviour with a new SSLInsecureRenegotiation
directive. (LP: #616759)
* debian/control: add specific dependency on first openssl version to get
CVE-2009-3555 fix.