On 8/13/19 12:31 PM, Salvatore Bonaccorso wrote:
The severity does indeed not need to imply that or a no-dsa necessarily. In this concrete case we have already marked the issue as no-dsa though: https://security-tracker.debian.org/tracker/CVE-2019-13509
Thanks for the link! I thought the no-dsa would show up as a tag on the bugtracker. Now I now where to look, thanks.

