handling open security problems in woody with the BTS (here: the kernel)[was: Re: Bug#176178 acknowledged by developer (do not reopen)]

To: 176178@bugs.debian.org, 181896@bugs.debian.org, debian-devel@lists.debian.org
Subject: handling open security problems in woody with the BTS (here: the kernel)[was: Re: Bug#176178 acknowledged by developer (do not reopen)]
From: Noèl Köthe <noel@debian.org>
Date: 06 Apr 2003 13:25:12 +0200
Message-id: <[🔎] 1049628312.15320.98.camel@p4.domain.lan>
Reply-to: 176178@bugs.debian.org, 181896@bugs.debian.org, debian-devel@lists.debian.org
In-reply-to: <handler.176178.D176178.104962549419200.notifdone@bugs.debian.org>
References: <20030406101003.GB16611@gondor.apana.org.au> <20030110204423.4CBBD1F03@controller.domain.lan> <handler.176178.D176178.104962549419200.notifdone@bugs.debian.org>

On Sun, 2003-04-06 at 12:48, Debian Bug Tracking System wrote:

Hello,

> Do not reopen these bugs.

doesn't make sense when you (Herbert) closes the bug and I reopen it.
Lets discuss this on debian-devel@ and maybe others will let us know how
to handle this really correctly.

the short story:
I reported 2 public known security problems of the kernel to the BTS (
#176178, #181896). Herbert (the maintainer) closed the bug when the he
uploaded the fixed packages to unstable and proposed-updates.

Because a Debian woody user still have no fixed packages available this
bug should still left open until it is fixed in woody. Its just the same
handling like the current glibc security problem in #185508.
I know the maintainer cannot do anything and have to wait for a DSA or
for the next 3.0rX Debian version where the stable release manager will
add a fixing package to Debian but these are the only possible ways how
to fix a woody taged bug.

Closing these bugs shows "this bug is fixed in woody" which is not
correct so they should left open.

-- 
Noèl Köthe <noel debian.org>
Debian GNU/Linux, www.debian.org

Reply to:

Follow-Ups:
- Bug#181896: Info received (was handling open security problems in woody with the BTS (here: the kernel)[was: Re: Bug#176178 acknowledged by developer (do not reopen)])
  - From: owner@bugs.debian.org (Debian Bug Tracking System)
- Bug#176178: Info received (was handling open security problems in woody with the BTS (here: the kernel)[was: Re: Bug#176178 acknowledged by developer (do not reopen)])
  - From: owner@bugs.debian.org (Debian Bug Tracking System)
- Re: Bug#176178: handling open security problems in woody with the BTS (here: the kernel)[was: Re: Bug#176178 acknowledged by developer (do not reopen)]
  - From: Herbert Xu <herbert@gondor.apana.org.au>
- Re: handling open security problems in woody with the BTS (here: the kernel)[was: Re: Bug#176178 acknowledged by developer (do not reopen)]
  - From: Guido Guenther <agx@debian.org>

Prev by Date: Re: is m68k really ready for testing?
Next by Date: Re: ifupdown writes to /etc... a bug?
Previous by thread: You got cable? You need this ...
Next by thread: Bug#181896: Info received (was handling open security problems in woody with the BTS (here: the kernel)[was: Re: Bug#176178 acknowledged by developer (do not reopen)])
Index(es):
- Date
- Thread