Control: fixed -1 2.3.0-1
On Sat, 2023-05-20 at 12:38 +0300, Kunal Mehta wrote:
> On 1/5/23 10:49, Emmanuel Engelhart wrote:
> > I wonder why this ticket is still open? AFAIK all of this has been fixed
> > quite a while ago (HTTPS feed included).
>
> Marking as done accordingly, thanks!
Please
I wonder why this ticket is still open? AFAIK all of this has been fixed
quite a while ago (HTTPS feed included).
On Fri, 19 Feb 2021 15:29:57 -0800 Kunal Mehta wrote:
On 2/14/21 8:15 PM, Paul Wise wrote:
> On Sun, 2021-02-14 at 20:11 -0800, Kunal Mehta wrote:
>
>> I'm going to cherry-pick th
On 2/14/21 8:15 PM, Paul Wise wrote:
On Sun, 2021-02-14 at 20:11 -0800, Kunal Mehta wrote:
I'm going to cherry-pick the upstream fix for this and upload its
hortly so it'll be in bullseye.
Thanks.
Uploaded with 2.0.5-3.
The catalog is used by other devices, and apparently some older
Andro
On Sun, 2021-02-14 at 20:11 -0800, Kunal Mehta wrote:
> I'm going to cherry-pick the upstream fix for this and upload its
> hortly so it'll be in bullseye.
Thanks.
> The catalog is used by other devices, and apparently some older
> Android devices didn't have the correct certs for Let's Encrypt?
Hi,
Thanks for noticing and reporting this :)
On 1/31/21 7:19 AM, Paul Wise wrote:
I noticed that the data feed is not downloaded using https, so network
attackers could modify the data feed to change my choice of downloads
to something I didn't want to download.
I'm going to cherry-pick the
Package: kiwix
Version: 2.0.5-2
Severity: important
Tags: security
I noticed that the data feed is not downloaded using https, so network
attackers could modify the data feed to change my choice of downloads
to something I didn't want to download.
Also most of the datasets point at http instead o
6 matches
Mail list logo
