Re: packages that use deprecated SQL escape functions
Le Thu, Oct 15, 2009 at 01:26:14PM +1100, Steffen Joeris a écrit :
>
> In the near future, I will try to do the archive scan again and file bugs with
> severity "normal" for the packages below that are still relying on the
> deprecated functions. (Should they be found vulnerable, the severity will be
> raised of course).
Dear Steffen,
shouldn’t the upstream maintainer(s) be warned before the security issue is
advertised in public?
Have a nice day,
--
Charles Plessy
Debian Med packaging team,
http://www.debian.org/devel/debian-med
Tsurumi, Kanagawa, Japan
Reply to: