Author: nion
Date: 2008-11-29 17:16:12 +0000 (Sat, 29 Nov 2008)
New Revision: 10534
Modified:
doc/narrative_introduction
Log:
flashplugin-nonfree and other downloaders handled as NFU from now on (security
team meeting), documented
Modified: doc/narrative_introduction
==================================================================---
doc/narrative_introduction 2008-11-29 16:59:32 UTC (rev 10533)
+++ doc/narrative_introduction 2008-11-29 17:16:12 UTC (rev 10534)
@@ -114,8 +114,13 @@
-----------------------
Processing your claimed entries is done by first seeing if the issue
is related to any software packaged in Debian, if it isn''t a package
-in Debian and has no ITP then you note that in the file, for example:
+in Debian and has no ITP then you note that in the file. Another case
+are meta packages that only provide a downloader (e.g. flashplugin-nonfree).
+There is no way to mark such packages as we have no influence on the version
+and technically the code is not present in Debian.
+Example:
+
CVE-2005-3018 (Apple Safari allows remote attackers to cause a denial of
service ...)
NOT-FOR-US: Safari