Paul wrote:
Perhaps moving from OpenSSL to NSS would be better if you are that
worried
about OpenSSL bugs
The problem is that nss-compat-ossl is not a drop-in replacement and as such
basically useless. Upstream projects tend to support only OpenSSL.
Kevin Kofler