Spurious CVE ID reported as open on Cherokee - NFU?

To: debian-security-tracker@lists.debian.org
Subject: Spurious CVE ID reported as open on Cherokee - NFU?
From: Gunnar Wolf <gwolf@gwolf.org>
Date: Fri, 15 Jan 2010 17:20:53 -0600
Message-id: <[🔎] 20100115232053.GB28356@gwolf.org>

Hi,

The PTS reports there is a CVE open for Cherokee (CVE-2009-4587). This
bug, however, seems to affect only Windows installs. FWIW there is
even a note on the CVE report¹ stating it is a lack of validation bug,
but I understand it cannot be used to crash the server in Debian.

Anyway, I have not dealt with CVE reports against my packages before,
and don't know how to close this report.

Thanks,

¹ http://security-tracker.debian.org/tracker/CVE-2009-4587

-- 
Gunnar Wolf • gwolf@gwolf.org • (+52-55)5623-0154 / 1451-2244

Reply to:

Follow-Ups:
- Re: Spurious CVE ID reported as open on Cherokee - NFU?
  - From: Raphael Geissert <geissert@debian.org>

Prev by Date: No tracker page for DSA-1971-1
Next by Date: Re: No tracker page for DSA-1971-1
Previous by thread: Re: No tracker page for DSA-1971-1
Next by thread: Re: Spurious CVE ID reported as open on Cherokee - NFU?
Index(es):
- Date
- Thread