From acbc4218023286f83a0854cfed99cb3c5a12fb15 Mon Sep 17 00:00:00 2001 From: Daniele Tricoli Date: Mon, 16 Mar 2015 22:41:25 +0000 Subject: Not mention patch for #770172 since it was removed --- debian/changelog | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) (limited to 'debian/changelog') diff --git a/debian/changelog b/debian/changelog index 2501b1c..6e50b85 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,9 +1,6 @@ requests (2.4.3-6) UNRELEASED; urgency=medium - * debian/patches/05_do-not-make-SSLv3-mandatory.patch - - Since SSL version 3 is insecure it is supported only if Python - supports it. (Closes: #770172) - * debian/patches/06_do-not-ascribe-cookies-to-the-target-domain.patch + * debian/patches/05_do-not-ascribe-cookies-to-the-target-domain.patch - Fix session fixation and cookie stealing: CVE-2015-2296. (Closes: #780506) -- cgit v1.2.3