Total failure on closing the last CVE.
There are significant issues regarding maintainability, stability, and
upstream activity. It has me concertinaed about the status of this
package on new deployments.
Two of these CVEs are fixed in the upstream system, but we were unable
to create a patch
On Wed, Apr 7, 2010 at 1:25 PM, Stefano Zacchiroli z...@debian.org wrote:
So, apparently upstream declares that 2 out of 3 issues (636 and 638)
are pending, while they have not commented at all on 637. Elizabeth,
are you going to check pick the 2 fixes? How about the third one? The
time for
retitle 572557 CVE-2010-0636 / CVE-2010-0637 / CVE-2010-0638
thanks
On Sat, Mar 13, 2010 at 07:44:25PM -0800, Elizabeth Krumbach wrote:
We're continuing work on these, but I've also gone ahead and also
informed upstream:
So, apparently upstream declares that 2 out of 3 issues (636 and 638)
are
Processing commands for cont...@bugs.debian.org:
retitle 572557 CVE-2010-0636 / CVE-2010-0637 / CVE-2010-0638
Bug #572557 [webcalendar] CVE-2010-0636 / CVE-2010-0637
Changed Bug title to 'CVE-2010-0636 / CVE-2010-0637 / CVE-2010-0638' from
'CVE-2010-0636 / CVE-2010-0637'
thanks
Stopping
On Wed, Apr 7, 2010 at 4:32 PM, Elizabeth Krumbach l...@princessleia.com
wrote:
On Wed, Apr 7, 2010 at 1:25 PM, Stefano Zacchiroli z...@debian.org wrote:
So, apparently upstream declares that 2 out of 3 issues (636 and 638)
are pending, while they have not commented at all on 637. Elizabeth,
On Thu, Mar 4, 2010 at 1:11 PM, Moritz Muehlenhoff j...@debian.org wrote:
A few security issues have been reported for which I cannot find any
information on the upstream website.
We're continuing work on these, but I've also gone ahead and also
informed upstream:
CVE-2010-0636:
Package: webcalendar
Severity: grave
Tags: security
A few security issues have been reported for which I cannot find any
information on the upstream website. Please investigate:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0636
thanks
On Thu, Mar 4, 2010 at 4:11 PM, Moritz Muehlenhoff j...@debian.org wrote:
Package: webcalendar
Severity: grave
Tags: security
A few security issues have been reported for which I cannot find any
information on the upstream website. Please investigate:
On Thu, Mar 04, 2010 at 10:11:53PM +0100, Moritz Muehlenhoff wrote:
Package: webcalendar
Severity: grave
Tags: security
A few security issues have been reported for which I cannot find any
information on the upstream website. Please investigate:
On Thu, Mar 4, 2010 at 4:20 PM, Moritz Muehlenhoff j...@inutil.org wrote:
On Thu, Mar 04, 2010 at 10:11:53PM +0100, Moritz Muehlenhoff wrote:
Package: webcalendar
Severity: grave
Tags: security
A few security issues have been reported for which I cannot find any
information on the upstream
10 matches
Mail list logo