[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: No DSA-168[67]-1 on the tracker

On Wed, Dec 17, 2008 at 07:41:01PM +0100, Francesco Poli wrote:
> On Wed, 17 Dec 2008 11:50:14 +0100 (CET) Thijs Kinkhorst wrote:
> 
> [...]
> > Something went wrong which brought the checkout the script uses to commit
> > its update in, in a conflict state. I resolved that now, and Florian added
> > the missing DSA's.
> 
> OK, I've just checked the two missing DSAs.
> 
> Everything seems to be fine, except for CVE-2008-5182, which is
> incorrectly mentioned in DSA-1687-1 [1] as "CVE_2008-5182" (please note
> the underscore!).
> As a consequence, the regular expression which (I guess) is used to
> parse the DSA missed it, and thus CVE-2008-5182 [2] is not marked as
> fixed in etch (security) on the tracker, and the DSA tracker page [3]
> fails to include CVE-2008-5182 in its reference list.

Thanks, fixed. Would you be interested in fixing such issues for
yourself? We can give you write access to the Security Tracker SVN.
You don't need to be a DD.

Cheers,
        Moritz
Reply to: