Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)

To: debian-security@lists.debian.org
Subject: Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
From: Wolfgang Jeltsch <7o2lccqg@acme.softbase.org>
Date: Tue, 02 Feb 2016 18:21:04 +0200
Message-id: <[🔎] 1454430064.8914.31.camel@idefix>
In-reply-to: <[🔎] 1454429682.6600.12.camel@debian.org>
References: <56a8b515.84c9c20a.31bff.35db@mx.google.com> <[🔎] 1454406003.4107.37.camel@idefix> <[🔎] 20160202095834.GH15036@snarl.nl> <[🔎] 1454427478.8914.8.camel@idefix> <[🔎] 1454429682.6600.12.camel@debian.org>

Am Dienstag, den 02.02.2016, 17:14 +0100 schrieb Yves-Alexis Perez:
> On mar., 2016-02-02 at 17:37 +0200, Wolfgang Jeltsch wrote:
> > Can anyone please clarify? In particular, I would like to know what the
> > exact policies regarding coverage of security support are, and what
> > issues have not been fixed intentionally in oldstable (and maybe even
> > stable).
> 
> Everything is in the tracker.

Hi,

could someone maybe give me a more specific answer?

  • Where does the tracker talk about security policies? (I actually
    doubt that such information is in the tracker at all.)

  • Where is a list of unfixed security issues?

URLs would be highly appreciated.

Please not that while such brief answers as above might be appropriate
for developers, they are typically not very helpful for users.

All the best,
Wolfgang

Reply to:

Follow-Ups:
- Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
  - From: Holger Levsen <holger@layer-acht.org>
- Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
  - From: Sébastien NOBILI <sebnewsletter@free.fr>
- Re: Security support incomplete?
  - From: Davide Prina <davide.prina@gmail.com>

References:
- Re: [SECURITY] [DSA 3455-1] curl security update
  - From: Wolfgang Jeltsch <7o2lccqg@acme.softbase.org>
- Re: [SECURITY] [DSA 3455-1] curl security update
  - From: Freddy Spierenburg <freddy@snarl.nl>
- Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
  - From: Wolfgang Jeltsch <7o2lccqg@acme.softbase.org>
- Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
  - From: Yves-Alexis Perez <corsac@debian.org>

Prev by Date: Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
Next by Date: Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
Previous by thread: Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
Next by thread: Re: Security support incomplete? (was: Re: [SECURITY] [DSA 3455-1] curl security update)
Index(es):
- Date
- Thread