Bug#706488: Aw: Re: Bug#706488: RM: boinc-server-maker/7.0.27

To: steffen_moeller@gmx.de, 706488@bugs.debian.org
Subject: Bug#706488: Aw: Re: Bug#706488: RM: boinc-server-maker/7.0.27
From: "Thijs Kinkhorst" <thijs@debian.org>
Date: Thu, 2 May 2013 09:51:28 +0200
Message-id: <[🔎] 8e007904d4f88e20ee669e8e824c7336.squirrel@aphrodite.kinkhorst.nl>
Reply-to: "Thijs Kinkhorst" <thijs@debian.org>, 706488@bugs.debian.org
In-reply-to: <[🔎] trinity-7bc90923-9c48-4f71-ba90-11b255095447-1367479553070@3capp-gmx-bs24>
References: <20130430200745.15362.10961.reportbug@Toshiba.siemens> <1367353414.18698.11.camel@jacala.jungle.funky-badger.org>, <[🔎] 1367440911.28602.42.camel@jacala.jungle.funky-badger.org> <[🔎] trinity-7bc90923-9c48-4f71-ba90-11b255095447-1367479553070@3capp-gmx-bs24>

On Thu, May 2, 2013 09:25, Steffen MÃ¶ller wrote:
> I have talked back to my pkg-boinc mates and, well, feelings are mixed.
> The remaining source to this TV report and some prominent discussions
> about it I found at
> http://www.rechenkraft.net/phpBB/viewtopic.php?f=12&amp;t=12717&amp;start=12
>     And while I think that no real damage is done (and the package could
> hence just remain as it is),  I also think that it might be unfortunate
> for Debian to ship any code with known vulnerabilities.

Isn't it possible to fix these vulnerabilities through a DSA or in the
first point release? Or alternatively remove the binary package in the
first point release?


Cheers,
Thijs

Reply to:

References:
- Bug#706488: RM: boinc-server-maker/7.0.27
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Bug#706488: Aw: Re: Bug#706488: RM: boinc-server-maker/7.0.27
  - From: "Steffen Möller" <steffen_moeller@gmx.de>

Prev by Date: Bug#706488: Aw: Re: Bug#706488: RM: boinc-server-maker/7.0.27
Next by Date: Bug#706488: Aw: Re: Bug#706488: RM: boinc-server-maker/7.0.27
Previous by thread: Bug#706488: Aw: Re: Bug#706488: RM: boinc-server-maker/7.0.27
Next by thread: Bug#706488: Aw: Re: Bug#706488: RM: boinc-server-maker/7.0.27
Index(es):
- Date
- Thread