Re: How to handle the case with no CVE

To: Ola Lundqvist <ola@inguza.com>
Cc: Debian LTS <debian-lts@lists.debian.org>
Subject: Re: How to handle the case with no CVE
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 26 May 2016 12:18:21 +0200
Message-id: <[🔎] 20160526101821.GA13343@lorien.valinor.li>
Mail-followup-to: Ola Lundqvist <ola@inguza.com>, Debian LTS <debian-lts@lists.debian.org>
In-reply-to: <[🔎] CABY6=0=799e_BziBE30Eknd0KQbfhq6siR7-Bk1-jAmxtgqOtg@mail.gmail.com>
References: <[🔎] CABY6=0=799e_BziBE30Eknd0KQbfhq6siR7-Bk1-jAmxtgqOtg@mail.gmail.com>

Hi,

On Thu, May 26, 2016 at 12:11:42PM +0200, Ola Lundqvist wrote:
> Hi
> 
> I have now fixed ruby-mail and the problem described there did not have a
> CVE identifier.
> See here:
> https://security-tracker.debian.org/tracker/source-package/ruby-mail
> Instead it has a TEMP-0000000-8B2928 identifier.
> 
> How do I mark that one as fixed?
> 
> I could not add TEMP-... to to gen-DLA command as it did not accept that
> name.
> 
> Can I mark it as fixed in some other way?

Just to be sure, have you recieved my other mail where I have
forwarded you the REJECT mail and as well commented on the above?

Just add

	[wheezy] - ruby-mail fixedversion

to data/CVE/list. Please do that only when no CVE is assigned. Ideally
if no CVE request was ever done, please do via oss-security
mailinglist.

HTH,

Regards,
Salvatore

Reply to:

Follow-Ups:
- Re: How to handle the case with no CVE
  - From: Ola Lundqvist <ola@inguza.com>

References:
- How to handle the case with no CVE
  - From: Ola Lundqvist <ola@inguza.com>

Prev by Date: How to handle the case with no CVE
Next by Date: Re: How to handle the case with no CVE
Previous by thread: How to handle the case with no CVE
Next by thread: Re: How to handle the case with no CVE
Index(es):
- Date
- Thread