CVE-2017-7479 motivation for minor?

[Ola Lundqvist <ola@inguza.com>]

Hi Debian Security team

What is your motivation for marking CVE-2017-7479 as no-dsa, minor issue?

It is an inefficient attack (at least 196 GB has to be transmitted) but that should not be hard to automate.

Or do you have any other information that I have missed?

Best regards

// Ola

--

 --- Inguza Technology AB --- MSc in Information Technology ----

/  ola@inguza.com                    Folkebogatan 26            \

|  opal@debian.org                   654 68 KARLSTAD            |

|  http://inguza.com/                Mobile: +46 (0)70-332 1551 |

\  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /

 ---------------------------------------------------------------