[Bug 498058] Re: debsecan should be removed from Ubuntu repositories
Paul Tagliamonte
paultag at ubuntu.com
Fri Dec 18 03:41:40 UTC 2009
Followup examples:
==
One example of a CVE that was reported is CVE-2009-4128 shown as open in
Ubuntu, but it shouldn't be affected.
Firefox issues are not shown since Debian's package is iceweasel
Any issue fixed in a DSA would appear to be fixed in Ubuntu regardless
if Ubuntu had issued a USN as long as that version was older.
7 poppler issues marked as still open even though they were fixed in
USN-850-3 ( and the same can be said for libgd issue CVE-2009-3546, cups
CVE-2009-2820, vorbis issue CVE-2009-3379, and most USN posts )
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-2820
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-3379
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-3546
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-4128
--
debsecan should be removed from Ubuntu repositories
https://bugs.launchpad.net/bugs/498058
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list