Re: severity-tracker and backports

To: Geert Stappers <stappers@stappers.nl>
Cc: debian-security-tracker@lists.debian.org
Subject: Re: severity-tracker and backports
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 29 Feb 2016 21:05:02 +0100
Message-id: <[🔎] 20160229200502.GA9839@eldamar.local>
Mail-followup-to: Geert Stappers <stappers@stappers.nl>, debian-security-tracker@lists.debian.org
In-reply-to: <[🔎] 20160229195759.GB22476@gpm.stappers.nl>
References: <[🔎] 20160229195759.GB22476@gpm.stappers.nl>

Hi Geert,

On Mon, Feb 29, 2016 at 08:58:00PM +0100, Geert Stappers wrote:
> Hi,
> 
> https://security-tracker.debian.org/tracker/CVE-2016-1898
> mentions wheezy and stretch, but not jessie, neither jessie-backports.
> 
> CVE-2016-1898 is about a ffmpeg vulnerbility.
> 
> ffmpeg is not in jessie, but it is in jessie-backports.
> 
> The CVE-2016-1898 vulnerbility is is fixed in jessie-backports.
> 
> What needs to be done that the Debian security-tracker
> reports status of packages in backports?

There is some discussion about this in #664866. But we haven't
progress on having that correctly since then.

Regards,
Salvatore

Reply to:

References:
- severity-tracker and backports
  - From: Geert Stappers <stappers@stappers.nl>

Prev by Date: severity-tracker and backports
Next by Date: refresh, backports in security-tracker
Previous by thread: severity-tracker and backports
Next by thread: refresh, backports in security-tracker
Index(es):
- Date
- Thread