diff options
Diffstat (limited to 'zarb-ml/mageia-dev/2011-June/006110.html')
| -rw-r--r-- | zarb-ml/mageia-dev/2011-June/006110.html | 121 |
1 files changed, 121 insertions, 0 deletions
diff --git a/zarb-ml/mageia-dev/2011-June/006110.html b/zarb-ml/mageia-dev/2011-June/006110.html new file mode 100644 index 000000000..6bf83bd39 --- /dev/null +++ b/zarb-ml/mageia-dev/2011-June/006110.html @@ -0,0 +1,121 @@ +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN"> +<HTML> + <HEAD> + <TITLE> [Mageia-dev] Mageia Advisories Database + </TITLE> + <LINK REL="Index" HREF="index.html" > + <LINK REL="made" HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Mageia%20Advisories%20Database&In-Reply-To=%3C20110628155820.GT21938%40mars-attacks.org%3E"> + <META NAME="robots" CONTENT="index,nofollow"> + <META http-equiv="Content-Type" content="text/html; charset=us-ascii"> + <LINK REL="Previous" HREF="006108.html"> + <LINK REL="Next" HREF="006113.html"> + </HEAD> + <BODY BGCOLOR="#ffffff"> + <H1>[Mageia-dev] Mageia Advisories Database</H1> + <B>nicolas vigier</B> + <A HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Mageia%20Advisories%20Database&In-Reply-To=%3C20110628155820.GT21938%40mars-attacks.org%3E" + TITLE="[Mageia-dev] Mageia Advisories Database">boklm at mars-attacks.org + </A><BR> + <I>Tue Jun 28 17:58:20 CEST 2011</I> + <P><UL> + <LI>Previous message: <A HREF="006108.html">[Mageia-dev] Mageia Advisories Database +</A></li> + <LI>Next message: <A HREF="006113.html">[Mageia-dev] KDE SC 4.7 RC1 landing on cauldron +</A></li> + <LI> <B>Messages sorted by:</B> + <a href="date.html#6110">[ date ]</a> + <a href="thread.html#6110">[ thread ]</a> + <a href="subject.html#6110">[ subject ]</a> + <a href="author.html#6110">[ author ]</a> + </LI> + </UL> + <HR> +<!--beginarticle--> +<PRE>On Tue, 28 Jun 2011, Michael Scherer wrote: + +><i> Le mardi 28 juin 2011 à 16:23 +0200, Christiaan Welvaart a écrit : +</I>><i> > On Tue, 28 Jun 2011, nicolas vigier wrote: +</I>><i> > +</I>><i> > > In order to send updates advisories, and have a web page listing all +</I>><i> > > previous advisories, we need to create a database to store them. +</I>><i> > > +</I>><i> > > So I think it should have the following info for each advisory : +</I>><i> > > +</I>><i> > > - advisory ID: something like MGA-[NUMBER] ? +</I>><i> > > - advisory date +</I>><i> > > - affected source packages +</I>><i> > > - affected distribution versions +</I>><i> > > - CVE numbers +</I>><i> > > - list of binary packages with sha1sum +</I>><i> Is there people that really check them ? +</I>><i> ( since there is already gpg and checksum in rpm that can be checked +</I>><i> automatically, I do not see the point in having this when it requires +</I>><i> another manual check ) +</I> +Most other distributions include this in their advisories. But yes, it's +not very useful, so we can probably remove the sha1. + +><i> +</I>><i> > > - Mageia Bug # +</I>><i> > > - Reference URLs +</I>><i> > > - advisory text +</I>><i> > > +</I>><i> > > Anything else ? +</I>><i> > +</I>><i> > - severity +</I>><i> Adding severity would requires us to have precise rules about it, and +</I>><i> would not mean much, and likely lots of bike shedding about it. +</I>><i> +</I>><i> And also, what is the use precisely ? +</I>><i> +</I>><i> > - whether this is a security issue or a non-security bugfix +</I>><i> What if there is more than 1 fix ( like a firefox upgrade ) ? +</I> +If at least one of them is security, then it's a security update. + +</PRE> + + + + + + + + + + + + + + + + + + + + + + + + + +<!--endarticle--> + <HR> + <P><UL> + <!--threads--> + <LI>Previous message: <A HREF="006108.html">[Mageia-dev] Mageia Advisories Database +</A></li> + <LI>Next message: <A HREF="006113.html">[Mageia-dev] KDE SC 4.7 RC1 landing on cauldron +</A></li> + <LI> <B>Messages sorted by:</B> + <a href="date.html#6110">[ date ]</a> + <a href="thread.html#6110">[ thread ]</a> + <a href="subject.html#6110">[ subject ]</a> + <a href="author.html#6110">[ author ]</a> + </LI> + </UL> + +<hr> +<a href="https://www.mageia.org/mailman/listinfo/mageia-dev">More information about the Mageia-dev +mailing list</a><br> +</body></html> |