Re: Should Debian ask for a CPE when a CVE in Debian is found?

To: "Wheeler, David A" <dwheeler@ida.org>, debian-security@lists.debian.org
Subject: Re: Should Debian ask for a CPE when a CVE in Debian is found?
From: Paul Wise <pabs@debian.org>
Date: Sun, 14 Feb 2016 07:58:54 +1100
Message-id: <[🔎] CAKTje6HYaZsEiW3iS+pwCae_JpwYwevhMxnTqcmD_HKsQftJZA@mail.gmail.com>
In-reply-to: <[🔎] 9F8E44BC27E22046B84EC1B9364C66A1B31E3FC9F1@EXCH07-4850.ida.org>
References: <[🔎] 9F8E44BC27E22046B84EC1B9364C66A1B31E3FC9F1@EXCH07-4850.ida.org>

On Sat, Feb 13, 2016 at 2:51 AM, Wheeler, David A wrote:

> Should Debian's security team ask for a Common Platform Enumeration (CPE) id when a related CVE is found/reported fixed?

The debian-security list is a general Debian security discussion list
rather than a contact point for the Debian security team. If you wish
to contact the Debian security team, please use security@debian.org.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Reply to:

Follow-Ups:
- Re: Should Debian ask for a CPE when a CVE in Debian is found?
  - From: Holger Levsen <holger@layer-acht.org>

References:
- Should Debian ask for a CPE when a CVE in Debian is found?
  - From: "Wheeler, David A" <dwheeler@ida.org>

Prev by Date: RE: Should Debian ask for a CPE when a CVE in Debian is found?
Next by Date: Re: Should Debian ask for a CPE when a CVE in Debian is found?
Previous by thread: RE: Should Debian ask for a CPE when a CVE in Debian is found?
Next by thread: Re: Should Debian ask for a CPE when a CVE in Debian is found?
Index(es):
- Date
- Thread