On Mon, 3 Aug 2009 11:01:01 -0400 Michael S. Gilbert wrote: > On Mon, 3 Aug 2009 15:24:58 +0200, Francesco Poli wrote: [...] > > What's wrong? > > I thought the tracker could fetch version information from the BTS, > > when a vulnerability is associated with a BTS bug... > > Was I too optimistic? ;-) > > the tracker is not integrated with the bts at all. OK, I was way too optimistic, then! ;-) [...] > this is a problem with how the tracker handles non-numbered issues. > the security team recently met to discuss workflow problems like this, > and i think the outcome was that we will be able to assign CVEs from a > pool alloted to debian, but i don't think the "how to do" this has been > worked out yet. Interesting, I hope the details may be sorted out soon. > > in the meantime, i will manually enter the information. I've just checked: everything seems to be fine now. Thank you very much for your quick answer & reaction! :-) Bye. -- New location for my website! Update your bookmarks! http://www.inventati.org/frx ..................................................... Francesco Poli . GnuPG key fpr == C979 F34B 27CE 5CD8 DC12 31B5 78F4 279B DD6D FCF4
Attachment:
pgpne_G0hicGL.pgp
Description: PGP signature