[Klug-general] SSL bug
George Prowse
cokehabit at gmail.com
Thu May 22 12:46:27 BST 2008
J D Freeman wrote:
> Yes, it was a bug, yes its a pain. But Nearly every distro suffers from
> this sort of thing from time to time. Debian have been very open, very
> honest, and very quick to fix it.
Very open and honest only go so far, it was a major cock-up that was
purely debian's fault.
The bug in question was caused by the removal of the following line of
code from md_rand.c
MD_Update(&m,buf,j);
[ .. ]
MD_Update(&m,buf,j); /* purify complains */
More information about the Kent
mailing list