[Secure-testing-commits] r14381 - data/CVE
Michael Gilbert
michael.s.gilbert at gmail.com
Fri Apr 2 22:07:09 UTC 2010
On Fri, 2 Apr 2010 20:15:47 +0000 Moritz Muehlenhoff wrote:
> Author: jmm-guest
> Date: 2010-04-02 20:15:40 +0000 (Fri, 02 Apr 2010)
> New Revision: 14381
>
> Modified:
> data/CVE/list
> Log:
> - kdelibs triage
> - sahana only an RFP
[...]
> CVE-2009-3625 (Directory traversal vulnerability in www/index.php in Sahana 0.6.2.2 ...)
> - - sahana <itp> (bug #497414)
> + NOT-FOR-US: Sahana
i think the point of the <itp> tag is to provide an error as soon as someone
uploads a package with that name; rather than a desire to accurately reflect
the wnpp state.
NFU makes it highly likely that the issue will end up ignored for a long time
if the package does get uploaded.
mike
More information about the Secure-testing-commits
mailing list