[MIR] socat
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
socat (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Availability]
Available in universe, built on all architectures.
[Rationale]
socat is a tool like netcat, but with support for ssl. It has recently become a requirement for GKE and thus should be in main.
[Security]
The tracker lists two open CVEs, but it is wrong - they have been fixed quite some time ago.
[Quality assurance]
Upstream has a test suite, but it is not run. socat has an important bug in Debian: https:/
[Dependencies]
Build-Depends: debhelper (>= 10), libssl-dev, libwrap0-dev.
[Standards compliance]
[Maintenance]
The package is relatively small, but since it interfaces with (potentially SSL) sockets, it might need some security updates. Otherwise it can be kept in sync with Debian.
[Background information]
There was a previous MIR attempt in https:/
tags: | added: id-5a382bce76f6b2c4a57705a0 |
At a glance, the tests should be runnable; please enable them if possible.
Given the use of OpenSSL, and previous issues with DH length, let's have this reviewed by the Security team.