[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: golang-go.crypto / CVE-2019-11841

Paul Wise <pabs@debian.org> writes:

> It documents which source package versions need to be shipped to
> ensure license compliance.
>
> https://www.debian.org/doc/debian-policy/ch-relationships.html#additional-source-packages-used-to-build-the-binary-built-using
>
> Please note that golang folks were/are using it in a more general way
> than the use it was intended for.

Interesting. It looks like obfs4proxy does not have this header, so it
uploaded fine.

But snapd does have this header, so I imagine it will have the same
problem.

I have contacted ftp-master concerning rclone. Waiting a response.
-- 
Brian May <bam@debian.org>
Reply to: