severity 562639 important thanks > Hi, > the following CVE (Common Vulnerabilities & Exposures) ids were > published for sql-ledger.
The package is clearly identified as being usable only in trusted environments, and it's tagged secteam::lenny-limited-support. Thus it doesn't warrant a grave severity. Given that upstream doesn't care at all, it's quite possible that some of them are fixed but we don't know and most reports do not come with simple test cases or with patches so there's not much I can do except if I spend countless hours reproducing the issues and writing patches myself (which I won't). Cheers, -- Raphaƫl Hertzog -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
