Re: DLA 1842-1: use of wrong CVE?
[Adding debian-lts@lists.debian.org to CC]
Hi Martin,
> from the vulnerability description in DLA 1842-1 I assume that the
> CVE-ID mentioned is not correct. Should be the new CVE-2019-12781 from
>
> > https://www.djangoproject.com/weblog/2019/jul/01/security-releases/
>
> instead of CVE-2019-12308.
Well spotted. This is "merely" cosmetic however; we are recording this
correctly internally in our database.
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b4936c3ee5cf778da8ab0879dc0807bb592654e6
I've opened a pull request to update the website here:
https://salsa.debian.org/webmaster-team/webwml/merge_requests/169
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` lamby@debian.org 🍥 chris-lamb.co.uk
`-
Reply to: