On Fri, 2011-07-29 at 11:46 -0600, Ware, Ryan R wrote: > On 7/28/11 10:04 PM, "Timo Härkönen" <[email protected]> wrote: > >I don't know how good idea it is to copy-paste descriptions of security > >bugs here. Those have limited access in bugzilla for a reason. > > Yes Please! Now we've announced to the world that MeeGo is vulnerable to > CVE-2010-3879 and CVE-2011-0640 and that we have no current fix for it. > > Security bugs are private for a reason.
See http://lists.meego.com/pipermail/meego-qa/2011-July/002109.html (which remained unanswered). The proper fix probably would be to not allow queries embedded in MeeGo wiki pages to list Security tickets in Bugzilla. andre -- Andre Klapper (maemo.org bugmaster | MeeGo QA) http://blogs.gnome.org/aklapper/ | http://www.openismus.com _______________________________________________ MeeGo-dev mailing list [email protected] http://lists.meego.com/listinfo/meego-dev http://wiki.meego.com/Mailing_list_guidelines
