On 22 Dec 2015, at 1:16pm, Matthias-Christian Ott <ott at mirix.org> wrote:
> Some software uses the affected versions and it's a good idea they know > that the software is affected. It's a matter of transparency. But it doesn't say when the vulns are fixed so it's not useful to people looking to fix their vulns. The Apple version of that report says Description: Multiple vulnerabilities existed in SQLite v3.8.5. These issues were addressed by updating SQLite to version 3.8.10.2. which is more helpful. Simon.
