Re: Issues regarding ruby-rack/CVE-2019-16782

To: Ola Lundqvist <ola@inguza.com>
Cc: Debian LTS <debian-lts@lists.debian.org>, Debian Security Team <team@security.debian.org>
Subject: Re: Issues regarding ruby-rack/CVE-2019-16782
From: Utkarsh Gupta <utkarsh@debian.org>
Date: Tue, 28 Apr 2020 15:18:38 +0530
Message-id: <[🔎] CAPP0f942i6jhjJS48-axsPFz4mhZEZkUsNzu_0PXPf5rM_+++A@mail.gmail.com>
In-reply-to: <[🔎] CABY6=0nsi4EBFzmLefRtGRYhv93LHAfc8kBCwR5jznBR9aZEfg@mail.gmail.com>
References: <5cfc2ed4-5b07-1b2c-5997-4b104e281491@gmail.com> <[🔎] 87h7x9ew7t.fsf@silverfish.pri> <[🔎] CAPP0f94PRUzdyeEy-b9htADnRzfpe37HnMLA4ADHKFnNotNfAg@mail.gmail.com> <[🔎] CAPP0f95bgmUbqkG0iE3MqwfkQ3SywhAvopfnpj0-pM4o+QUeaw@mail.gmail.com> <[🔎] CABY6=0nsi4EBFzmLefRtGRYhv93LHAfc8kBCwR5jznBR9aZEfg@mail.gmail.com>

Hi Ola,

On Tue, 28 Apr, 2020, 3:06 PM Ola Lundqvist, <ola@inguza.com> wrote:

I think the Debian Security team usually wants to judge that on their
own. You can write a note about it in the CVE entry.
So before the regular security team has said anything we should not do that.

Sure thing.

Given that they were CC'ed here during the entire thread, I'll leave this here for them to decide.

Best,

Utkarsh

Reply to:

References:
- Re: Issues regarding ruby-rack/CVE-2019-16782
  - From: Brian May <bam@debian.org>
- Re: Issues regarding ruby-rack/CVE-2019-16782
  - From: Utkarsh Gupta <utkarsh@debian.org>
- Re: Issues regarding ruby-rack/CVE-2019-16782
  - From: Utkarsh Gupta <utkarsh@debian.org>
- Re: Issues regarding ruby-rack/CVE-2019-16782
  - From: Ola Lundqvist <ola@inguza.com>

Prev by Date: Re: Issues regarding ruby-rack/CVE-2019-16782
Next by Date: Re: dla-needed.txt: Add note on CVE-2020-1769 in otrs2.
Previous by thread: Re: Issues regarding ruby-rack/CVE-2019-16782
Next by thread: Jessie update of ceph?
Index(es):
- Date
- Thread