inconsistencies in oldstable synopsis on tracker pages

To: debian-security-tracker@lists.debian.org
Subject: inconsistencies in oldstable synopsis on tracker pages
From: "Michael S. Gilbert" <michael.s.gilbert@gmail.com>
Date: Sun, 10 May 2009 17:23:46 -0400
Message-id: <[🔎] 20090510172346.0545e6ef.michael.s.gilbert@gmail.com>

hello,

the oldstable synopsis on the security tracker pages is often inconsistent.
for example in [1],  the oldstable synopsis says:

    Debian/oldstable	packages php4, php5 are vulnerable

whereas the stable synopsis says:

    Debian/stable	package php5 is fixed in stable-security

even though there was a DSA issued that fixed those issues in oldstable.  note that the package information displayed in the later portions of that page make it clear that oldstable is safe.  i think that the oldstable synopsis should say:

    Debian/oldstable	packages php4, php5 are fixed in oldstable-security

if you can point me to the code that generates this info, i can look at making the necessary changes.

mike

[1] http://security-tracker.debian.net/tracker/CVE-2008-5814

Reply to:

Prev by Date: Re: DSA-1798-1 vs tracker: is squeeze/sid really fixed?
Next by Date: Re: DSA vs tracker: is CVE-2008-5814 fixed in unstable?
Previous by thread: Re: DSA-1798-1 vs tracker: is squeeze/sid really fixed?
Next by thread: Removed conflicting data from the tracker
Index(es):
- Date
- Thread