Hosting Provided By

Re: Vulnerabilities not affecting Debian: reporting proposal

From: Stefan Fritsch <sf(at)sfritsch.de>
Date: Wed Jul 11 2007 - 13:10:15 EDT

Hi,

Alexander Konovalenko wrote:
> I couldn't find any existing solutions to the problem described
> above. The testing security team does publish some of the
> information in their Secure-testing-commits, but it lacks more
> verbose explanations and is more of a tool for team members than a
> source of information intended for the general public like Debian
> Security Advisories.

do you know the web interface to these svn commits at http://security-tracker.debian.net/tracker ? If you already have the CVE id, you can easily get all the information there. The explanations for not-affected could be more verbose sometimes, but I think in general they are sufficient.

There is no feed for this information, but if you want to be up-to-date about the packages you use, you should look at the debsecan package (though that does not give you information about non-issues).

Cheers,
Stefan

-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Wed Jul 11 13:11:25 2007

This message: [ Message body ]
Next message: Alec Berryman: "Re: [Secure-testing-team] Vulnerabilities not affecting Debian: reporting proposal"
Previous message: Martin Schulze: "Re: Vulnerabilities not affecting Debian: reporting proposal"
In reply to: Alexander Konovalenko: "Vulnerabilities not affecting Debian: reporting proposal"
Next in thread: Alec Berryman: "Re: [Secure-testing-team] Vulnerabilities not affecting Debian: reporting proposal"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Mon Jul 16 2007 - 05:37:20 EDT