Re: [Secure-testing-commits] r6573 - data/CVE

To: debian-security-tracker@lists.debian.org
Subject: Re: [Secure-testing-commits] r6573 - data/CVE
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Tue, 11 Sep 2007 20:56:24 +0200
Message-id: <[🔎] 20070911185624.GA4301@galadriel.inutil.org>
In-reply-to: <E1IV5zL-0004Qa-J3@alioth.debian.org>
References: <E1IV5zL-0004Qa-J3@alioth.debian.org>

nion@alioth.debian.org wrote:
>  CVE-2005-4856 (The admin interface in eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, ...)
> -	TODO: check
> +	- ezpublish <not-affected> (Debian's version is too old)

Don't add <not-affected> entries w/o proper information why Debian is not affected.
At least add a note explaining the circumstances.
Just because the bug description doesn't mention it, is not a sufficient reason.

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Re: [Secure-testing-commits] r6573 - data/CVE
  - From: Nico Golde <nico@ngolde.de>

Prev by Date: Check-syntax pre-commit hook installed
Next by Date: Re: [Secure-testing-commits] r6573 - data/CVE
Previous by thread: Check-syntax pre-commit hook installed
Next by thread: Re: [Secure-testing-commits] r6573 - data/CVE
Index(es):
- Date
- Thread