Bug#905304: security-tracker: DSA-4259-1 vs. tracker

To: "Francesco Poli (wintermute)" <invernomuto@paranoici.org>, 905304@bugs.debian.org
Cc: 905304-done@bugs.debian.org, jmm@debian.org
Subject: Bug#905304: security-tracker: DSA-4259-1 vs. tracker
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 2 Aug 2018 22:28:12 +0200
Message-id: <[🔎] 20180802202812.GA12273@eldamar.local>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 905304@bugs.debian.org
In-reply-to: <[🔎] 153324003155.5596.18319616294450564420.reportbug@crunch>
References: <[🔎] 153324003155.5596.18319616294450564420.reportbug@crunch> <[🔎] 153324003155.5596.18319616294450564420.reportbug@crunch>

HI Francesco,

On Thu, Aug 02, 2018 at 10:00:31PM +0200, Francesco Poli (wintermute) wrote:
> Package: security-tracker
> Severity: normal
> 
> Hello!
> 
> According to [DSA-4259-1], ruby2.3/2.3.3-1+deb9u3 fixes a number of
> vulnerabilities, among which CVE-2017-17405, CVE-2017-17742,
> CVE-2017-17790, and CVE-2018-6914.
> 
> However, the tracker pages for [CVE-2017-17405], [CVE-2017-17742],
> [CVE-2017-17790], and [CVE-2018-6914] seem to disagree.
> 
> Is the tracker wrong?
> Please update the tracker data, then.

The tracker was wrong due to the human-error in
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a5e9c1099e5f5a29832b60c97f3d9d0f61a538cf
, which needed to be added manually due to a unrelated problem while
updating tracker and relasing the DSA.

Thanks for spotting! All the information should be uptodate in at most
an hour.

Regards,
Salvatore

Reply to:

References:
- Bug#905304: security-tracker: DSA-4259-1 vs. tracker
  - From: "Francesco Poli (wintermute)" <invernomuto@paranoici.org>

Prev by Date: Bug#905304: marked as done (security-tracker: DSA-4259-1 vs. tracker)
Next by Date: External check
Previous by thread: Bug#905304: marked as done (security-tracker: DSA-4259-1 vs. tracker)
Next by thread: External check
Index(es):
- Date
- Thread