Hi, * Moritz Muehlenhoff <jmm@inutil.org> [2007-09-12 07:18]: > nion@alioth.debian.org wrote: > > CVE-2005-4856 (The admin interface in eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, ...) > > - TODO: check > > + - ezpublish <not-affected> (Debian's version is too old) > > Don't add <not-affected> entries w/o proper information why Debian is not affected. I copied the description from another ezpublish entry, thought its ok like this. > At least add a note explaining the circumstances. Ok. > Just because the bug description doesn't mention it, is not a sufficient reason. That not what I did, otherwise I would have tagged the other ezpublish entries like this too but didn't. Cheers Nico -- Nico Golde - http://ngolde.de - nion@jabber.ccc.de - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
Attachment:
pgpwSQ2UvlsKb.pgp
Description: PGP signature