Re: temp names stop working when CVE assigned

To: "Thijs Kinkhorst" <thijs@debian.org>
Cc: debian-security-tracker@lists.debian.org
Subject: Re: temp names stop working when CVE assigned
From: Florian Weimer <fweimer@bfk.de>
Date: Thu, 13 Dec 2007 18:17:11 +0100
Message-id: <[🔎] 82odcubjl4.fsf@mid.bfk.de>
In-reply-to: <[🔎] 42634.131.211.82.229.1197563550.squirrel@wm.kinkhorst.nl> (Thijs Kinkhorst's message of "Thu, 13 Dec 2007 17:32:30 +0100 (CET)")
References: <[🔎] 42634.131.211.82.229.1197563550.squirrel@wm.kinkhorst.nl>

* Thijs Kinkhorst:

> I found a mail from a couple of months ago where this URL was used:
> http://security-tracker.debian.net/tracker/TEMP-0000000-009184

This is really temporary, the 009184 part changes with each commit,
basically.

> Would it be possible when a CVE gets assigned to such an issue, to keep
> the old URL and have it redirect to the CVE?

This should work if there's a Debian bug report recorded in the
tracker.  In that case, the bug number is used instead of the sequence
of zeros, and this continues to work after the CVE has been assigned:

  <http://security-tracker.debian.net/tracker/TEMP-328136>

There has been some talk to use a shortened hash of the bug
description, but this hasn't been implemented yet.

-- 
Florian Weimer                <fweimer@bfk.de>
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstraße 100              tel: +49-721-96201-1
D-76133 Karlsruhe             fax: +49-721-96201-99

Reply to:

References:
- temp names stop working when CVE assigned
  - From: "Thijs Kinkhorst" <thijs@debian.org>

Prev by Date: temp names stop working when CVE assigned
Next by Date: linux-2.6 records
Previous by thread: temp names stop working when CVE assigned
Next by thread: linux-2.6 records
Index(es):
- Date
- Thread