[Pkg-xfce-devel] Bug#517020: Bug#517020: Bug#517020: Bug#517020: thunar: potential exploits via application launchers
- Subject: [Pkg-xfce-devel] Bug#517020: Bug#517020: Bug#517020: Bug#517020: thunar: potential exploits via application launchers
- From: jmm at inutil.org (Moritz Muehlenhoff)
- Date: Wed, 29 Jul 2009 20:04:37 +0200
- Message-id: <[🔎] 20090729180437.GA19100@galadriel.inutil.org>
- In-reply-to: <1235898987.26599.13.camel@hidalgo>
- References: <20090225003330.61575858.michael.s.gilbert@gmail.com> <1235544273.30491.28.camel@hidalgo> <20090225020832.c5e68d2e.michael.s.gilbert@gmail.com> <1235549549.17208.4.camel@miria> <20090228223101.80077552.michael.s.gilbert@gmail.com> <1235898987.26599.13.camel@hidalgo>
severity 517020 normal
thanks
On Sun, Mar 01, 2009 at 10:16:27AM +0100, Yves-Alexis Perez wrote:
> On sam, 2009-02-28 at 22:31 -0500, Michael Gilbert wrote:
> > (although if that's the case, i think that there is a problem
> > with debian's documentation [1] since it appears to indicate that any
> > and all security holes are to be reported as grave).
>
> It says ???Most security bugs should also be set at critical or grave
> severity.???. I guess you missed the ???most????
>
> Anyway, I'm not really sure of the severity, it's not that easy to
> exploit, and exploited anyway. I'll summarize that upstream and decide
> then.
I don't think this is release-critical. Let me go ahead with downgrading
the severity.
Cheers,
Moritz
Reply to: