Bug#738202: security-tracker: DSA-2856-1 vs. tracker

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#738202: security-tracker: DSA-2856-1 vs. tracker
From: "Francesco Poli \(wintermute\)" <invernomuto@paranoici.org>
Date: Sat, 08 Feb 2014 17:10:09 +0100
Message-id: <[🔎] 20140208161009.6693.75010.reportbug@homebrew>
Reply-to: "Francesco Poli \(wintermute\)" <invernomuto@paranoici.org>, 738202@bugs.debian.org

Package: security-tracker
Severity: normal

Hello,
DSA-2856-1 [1] states that CVE-2014-0050 is fixed in oldstable and
stable security updates for libcommons-fileupload-java.

[1] https://lists.debian.org/debian-security-announce/2014/msg00026.html

The tracker seems to agree on its DSA page [2], but seems to miss the
link with the CVE. As a consequence the CVE page [3] still shows
libcommons-fileupload-java as vulnerable in oldstable (security) and
stable (security)...

[2] https://security-tracker.debian.org/tracker/DSA-2856-1
[3] https://security-tracker.debian.org/tracker/CVE-2014-0050

Please update the tracker data accordingly.

Thanks for your time!
Bye.

Reply to:

Follow-Ups:
- Bug#738202: marked as done (security-tracker: DSA-2856-1 vs. tracker)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Re: About testing security team [was: Re: Bug#683986: marked as done (security-tracker: automated testing announcement emails)]
Next by Date: Bug#738202: marked as done (security-tracker: DSA-2856-1 vs. tracker)
Previous by thread: Re: About testing security team [was: Re: Bug#683986: marked as done (security-tracker: automated testing announcement emails)]
Next by thread: Bug#738202: marked as done (security-tracker: DSA-2856-1 vs. tracker)
Index(es):
- Date
- Thread