Re: [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage python-django for stretch LTS.
On 01/09/2020 13:12, Chris Lamb wrote:
> 346825dd by Chris Lamb at 2020-09-01T12:12:17+01:00
> data/dla-needed.txt: Triage python-django for stretch LTS.
> - - - - -
> 08bd2296 by Chris Lamb at 2020-09-01T12:12:23+01:00
> data/dla-needed.txt: Claim python-django.
Don't the new django vulneravilities only apply when running with Python 3.7 or
newer? If so, shouldn't we mark them as ignored for stretch and older? Or do you
think there may be users with their own Python installations and so we should
still fix this just in case?