[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] add python2.6, 2.7 and claim 2.7

Abhijith PA <gitlab@salsa.debian.org> writes:

> +python2.6 
> +--
> +python2.7 (Abhijith PA)
> +--


I see you have claimed Python2.7 but not Python2.6, which both have the
same vulnerability. CVE-2018-1000030

Upstream have decided that this is not a security issue, and it has been
marked no-DSA in Jessie and Stretch. https://bugs.python.org/issue31530

Do you have any objections to marking python2.6 and python2.7 as no-DSA
in wheezy too?

Brian May <bam@debian.org>

Reply to: