[arch-dev-public] Get involved with tracking security issues in Arch Linux packages

Felix Yan felixonmars at gmail.com
Sun Mar 9 01:04:28 EST 2014


On Sunday, March 09, 2014 15:56:57 Allan McRae wrote:
> We have had some great help in this area by a user 'RbN' who has been
> filing bug reports about CVEs with links to the patches fixing the
> issue.  However, it is not a one person job, and they can not keep up alone.

I agree. Many thanks to RbN. And after solving two reports about python, I 
added CVE search results about python into my w3watch list:

http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=python grep "CVE"

Hope this helps.

Regards,
Felix Yan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <http://mailman.archlinux.org/pipermail/arch-dev-public/attachments/20140309/68c68369/attachment.asc>


More information about the arch-dev-public mailing list