Michael S Gilbert wrote: > On Fri, 02 Oct 2009 08:37:23 -0500 Raphael Geissert wrote: >> >> I actually meant something more like: >> >> CVE-2009-1234 (heap overflow in Alvaro's Messenger could...) >> TODO: check >> HINT: amsn >> CVE-2009-2345 (incorrect handling of null-terminated strings in foo...) >> TODO: check >> HINT: foo (if such a package existed) > > i don't think its necessary to invent a new tag. i meant: > > CVE-2009-1234 (heap overflow in Alvaro's Messenger could...) > TODO: check amsn (and other packages) > CVE-2009-2345 (incorrect handling of null-terminated strings in foo..) > TODO: check foo (and other packages) >
The idea is to make it easy to parse so that that information is used by other tools. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
