* Moritz Muehlenhoff: >> According to Debian's stable security bug fixing policy, these aren't >> security vulnerabilities. Shall we track them nevertheless? > > As this hasn't been specifically publicly announced, we should do so?
I don't know. I've been told it's the policy, and I've documented in (see my posting on debian-security). We could put it on the secure-testing web server if you agree it's a reasonable policy. _______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
