Re: tracking security issues without CVEs
On Fri, Mar 11, 2016 at 3:49 AM, Moritz Mühlenhoff wrote:
> On Sun, Mar 06, 2016 at 06:58:48PM +0100, Salvatore Bonaccorso wrote:
>
>> But I think as well that is right now to early to
>> start adopting these for not yet assigned issues.
>
> Agreed, let's stick with the usual "file a bug to get a temporary
> identifier" procedure for now.
I wonder if the TEMP URLs should redirect to the bug report URL when
there is a bug available?
BTW, there was an LWN article about the alternatives to CVEs:
http://lwn.net/SubscriberLink/679315/a38e2baa9ceaf953/
--
bye,
pabs
https://wiki.debian.org/PaulWise
Reply to: