On Fri, Apr 03, 2015 at 07:04:23PM +0200, Mike Gabriel wrote: > Package: caja > Version: 1.8.2-3 > Followup-For: Bug #781608 > > Control: severity -1 serious > Control: forwarded -1 https://github.com/mate-desktop/caja/issues/398 > > Dear Kees, dear Debian Security Team, > > @Kees: Thanks for bringing up this issue. I actually think that the issue > is more severe than just "normal", so raising severity on this. > > @Security Team: I'd like to receive advise on this issue. Is it actually > appropriate to file a CVE for what Kees describes in his original post [1]?
This deserves a CVE ID, but we cannot issue one from the Debian pool (which can only be used for issues not yet public). Since this is already in the Debian BTS, please request one on the oss-security mailing list: https://github.com/RedHatProductSecurity/CVE-HOWTO This will also keep other distros posted. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org