On Thu, 2015-02-26 at 17:41 +0100, Holger Levsen wrote: > On Donnerstag, 26. Februar 2015, Paul Wise wrote: > > I noticed the description fields are truncated, is that intentional? > > that's all that is stored in the db... Are you sure? By way of example, take a look at CVE-2012-0833, the description listed on the web page is much longer than in the JSON. https://security-tracker.debian.org/tracker/CVE-2012-0833 > > What about making the structure like this? > > why? :) More logical, uses less bytes for the string "package". > the tracker shows them all the time, eg on > https://security-tracker.debian.org/tracker/CVE-2013-2131 Ah, the first table is the version numbers of the package in each distribution, fixed or not. The second table is fixed version numbers. > > I'm thinking omit such versions. > > /me too To clarify, I was suggesting keep the version numbers in the "repositories" section but only keep fixed version numbers in the "releases" section. Also, the fixed version numbers appear to be incorrect, for example the website says CVE-2012-6656 was fixed in eglibc 2.13-38+deb7u7 but the json says it was fixed in 2.13-38+deb7u8. https://security-tracker.debian.org/tracker/CVE-2012-6656 -- bye, pabs https://wiki.debian.org/PaulWise
Attachment:
signature.asc
Description: This is a digitally signed message part