Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] add python2.6, 2.7 and claim 2.7

To: debian-lts@lists.debian.org, Abhijith PA <gitlab@salsa.debian.org>
Subject: Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] add python2.6, 2.7 and claim 2.7
From: Brian May <bam@debian.org>
Date: Wed, 07 Feb 2018 18:24:37 +1100
Message-id: <[🔎] 87po5huuru.fsf@prune.linuxpenguins.xyz>
In-reply-to: <5a756e5f8e8c3_336a3fc4ee01a534948bf@godard.mail>
References: <5a756e5f8e8c3_336a3fc4ee01a534948bf@godard.mail>

Abhijith PA <gitlab@salsa.debian.org> writes:

> +python2.6 
> +--
> +python2.7 (Abhijith PA)
> +--

Hello,

I see you have claimed Python2.7 but not Python2.6, which both have the
same vulnerability. CVE-2018-1000030

Upstream have decided that this is not a security issue, and it has been
marked no-DSA in Jessie and Stretch. https://bugs.python.org/issue31530

Do you have any objections to marking python2.6 and python2.7 as no-DSA
in wheezy too?

Regards
-- 
Brian May <bam@debian.org>

Reply to:

Follow-Ups:
- Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] add python2.6, 2.7 and claim 2.7
  - From: Abhijith PA <abhijith@disroot.org>

Prev by Date: Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Readd krb5 to dla-needed.txt
Next by Date: Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Readd krb5 to dla-needed.txt
Previous by thread: Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Readd krb5 to dla-needed.txt
Next by thread: Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] add python2.6, 2.7 and claim 2.7
Index(es):
- Date
- Thread