Am Sonntag, den 01.11.2020, 14:14 +0100 schrieb Ole Streicher: > I just stumbled upon the following web page: > > https://cyber-itl.org/2020/10/28/citl-7000-defects.html The list misses the package version. IMHO this is rather vital information. They also used Ubuntu 18.04 which is more then two years old. Also I find it weird that they expect every package maintainer to contact them and proof their association. If they detected a bug or even a vulnerability it affects the upstream project as well as every downstream packager. Maybe our DPL or the TC or security team can get their hands on the full data. Regards, Daniel -- Regards, Daniel Leidert <dleidert@debian.org> | https://www.wgdd.de/ GPG-Key RSA4096 / BEED4DED5544A4C03E283DC74BCD0567C296D05D GPG-Key ED25519 / BD3C132D8B3805D1808123AB7ACE00941E338C78 If you like my work consider sponsoring me via https://www.patreon.com/join/dleidert
Attachment:
signature.asc
Description: This is a digitally signed message part