[Secure-testing-team] Introducing not-affected
Moritz Muehlenhoff
jmm at inutil.org
Thu Sep 8 10:15:37 UTC 2005
Hi,
now that we've a pretty complete security history back to
a few years, I'm planning to implement package specific HTML security
overviews, so that one can have a look at the security history
of a package without browsing through the whole CAN/list.
This should include cases, where Debian is not affected by
vulnerability, so I introduced "not-affected" with the latest
CVE processing bunch. Please use it like this:
- packagename not-affected (reason)
We'll need to update the checklist script, so that it ignores
not-affected instead of a version number.
Cheers,
Moritz
More information about the Secure-testing-team
mailing list