[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Syntax for DSA (was: [SECURITY] [DSA 1865-1] New Linux 2.6.18)

Simon Paillard wrote:
 
> > > > Source archives:
> > > [..]
> > > >   These changes will probably be included in the oldstable distribution on
> > > >   its next update.
> > > 
> > > Same remark here.
> > 
> > Isn't this a standard part of the template?
>  
> Only since August 2009 :-)
> 
> Could you point me to the standard template you are refering to ?

It's attached. 

I suppose a kind of structured template written in XML/YAML whatever
(which would also be used for the textual representation sent to
d-s-a) would be the best. However, I don't think we'll have time to
work on this any time soon.

Cheers,
        Moritz

From: __DAK_ADDRESS__
To: __WHOAMI__ <dak@security.debian.org>
__BCC__
X-Debian-Package: __SOURCE__
Subject: Template Advisory __ADVISORY__

------------------------------------------------------------------------
Debian Security Advisory __ADVISORY__                  security@debian.org
http://www.debian.org/security/                         __WHOAMI__
__DATE__                   http://www.debian.org/security/faq
------------------------------------------------------------------------

Package        : __PACKAGE__
Vulnerability  : XXX
Problem type   : local/remote XXX
Debian-specific: XXX
CVE Id(s)      : XXX
CERT advisory  : XXX
BugTraq ID     : XXX
Debian Bug     : XXX

Several local/remote vulnerabilities have been discovered in...
The Common
Vulnerabilities and Exposures project identifies the following problems:

[single issue]
Foo discovered that


[single issue]
For the old stable distribution (etch), this problem has been fixed in version XXX
__PACKAGE__

For the stable distribution (lenny), this problem has been fixed in version XXX
__PACKAGE__

For the unstable distribution (sid), this problem has been fixed in
version XXX

[multiple issues]
For the old stable distribution (etch), these problems have been fixed in version
__PACKAGE__

For the stable distribution (lenny), these problems have been fixed in version
__PACKAGE__

For the unstable distribution (sid), these problems have been fixed in
version XXX

We recommend that you upgrade your __PACKAGE__ package.

Upgrade instructions
--------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 4.0 alias etch
-------------------------------

Debian GNU/Linux 5.0 alias lenny
--------------------------------

__ADVISORY_TEXT__


  These files will probably be moved into the stable distribution on
  its next update.

---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
Reply to: