From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from smtp-out-so.shaw.ca (smtp-out-so.shaw.ca [64.59.136.139]) by sourceware.org (Postfix) with ESMTPS id A94983846402 for ; Fri, 28 May 2021 17:13:21 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.3.2 sourceware.org A94983846402 Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=SystematicSw.ab.ca Authentication-Results: sourceware.org; spf=none smtp.mailfrom=brian.inglis@systematicsw.ab.ca Received: from [192.168.1.104] ([68.147.0.90]) by shaw.ca with ESMTP id mg2xlsurr7YjPmg2yluEhM; Fri, 28 May 2021 11:13:20 -0600 X-Authority-Analysis: v=2.4 cv=fPVaYbWe c=1 sm=1 tr=0 ts=60b124b0 a=T+ovY1NZ+FAi/xYICV7Bgg==:117 a=T+ovY1NZ+FAi/xYICV7Bgg==:17 a=IkcTkHD0fZMA:10 a=HEQy-eQP_xfe7A3f3ZsA:9 a=QEXdDO2ut3YA:10 Reply-To: cygwin-apps@cygwin.com To: cygwin-apps@cygwin.com From: Brian Inglis Subject: openssl needs updated Organization: Systematic Software Message-ID: <6da35f2f-4d40-58e4-7075-1a867ddbb6e1@SystematicSw.ab.ca> Date: Fri, 28 May 2021 11:13:19 -0600 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.10.2 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-CA Content-Transfer-Encoding: 7bit X-CMAE-Envelope: MS4xfKCNHnauEJw0M9YHI2h6a4c02OyMVSVTpWlnmGe5PniGT0Bt8dS60B+buBcQdku5sF6BzhJpEtYkkZNq6z/EDKphFx8++V0xNkf/CDYJSkj1zZTlFG3o 0KnnxQfFWntikd+qPoawjO2HnLm53jHPgHjCUhUPFUP4b4toUOcRQ2XeFbZOSYeeptxTSB6anfDj1h2zwszePzMroj/P5PKqsSs= X-Spam-Status: No, score=-3488.0 required=5.0 tests=BAYES_00, KAM_DMARC_STATUS, KAM_LAZY_DOMAIN_SECURITY, RCVD_IN_BARRACUDACENTRAL, RCVD_IN_DNSWL_LOW, RCVD_IN_MSPIKE_H2, SPF_HELO_NONE, SPF_NONE, TXREP autolearn=no autolearn_force=no version=3.4.2 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on server2.sourceware.org X-BeenThere: cygwin-apps@cygwin.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Cygwin package maintainer discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 May 2021 17:13:22 -0000 openssl/libssl has not been updated since 1.1.f two years ago and now has four high sev CVEs outstanding in upstream 1.1.1k: two last year, two this year. If maintainer is short of time, I may be able to co-maintain? -- Take care. Thanks, Brian Inglis, Calgary, Alberta, Canada This email may be disturbing to some readers as it contains too much technical detail. Reader discretion is advised. [Data in binary units and prefixes, physical quantities in SI.]