[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#603450: Is 603450 realy release critical?

* Bastian Blank [2010-12-08 10:37 +0100]:
> On Wed, Dec 08, 2010 at 08:45:30AM +0100, Alexander Reichle-Schmehl wrote:
> > #603450 is a bug (currently with severity grave, Justification: user
> > security hole), as offlineimap does no ssl certificate checking.
> Could you explain why it should be acceptable to announce secure
> operation but ignore the very basic principles of it? #564690 is an old
> example of the same problem.

Could you explain how an example of a bug with a severity set by
yourself supports your point, considering that the maintainer of this
package only agreed about the bugs severity because it was a regression?


Reply to: