Bug#964946: rhythmbox.org domain doesn't belong to GNOME/Rhythmbox
crvi c
crvisqr at gmail.com
Sat Aug 22 18:40:47 BST 2020
Thanks for the explanation.
I set the severity to critical based on
https://www.debian.org/Bugs/Developer#severities
"introduces a security hole on systems where you install the package."
Your comment:
" ... introduce a system-wide security flaw affecting users who do not
directly use the relevant package ..."
offers more information, and should be updated in
https://www.debian.org/Bugs/Developer#severities
At the time of reporting the issue, it wasn't clear what
www.rhythmbox.org would become ( still not sure ). The main concern
was if the link would point to some inappropriate content, which would
be totally unacceptable from debian point of view.
More information about the pkg-gnome-maintainers
mailing list