Ola Lundqvist writes:
> Hi fellow LTS members
>
> Today (as part of front desk work) I triaged lua-cgi and I thought that the
> session id vulnerabilities were rather basic and severe. So I thought that
> if it is a really used software it would have been found much earlier.
> Especially since th
Hi Chris
Good point about the popcon data.
// Ola
On Tue, 25 Feb 2020 at 17:21, Chris Lamb wrote:
> Hi Ola,
>
> > So I think we should probably mark lua-cgi as unsupported instead of
> > fixing the vulnerabilities.
>
> I'd be happy with this. On the popcon figure, I am sure we can agree
> to s
Hi Ola,
> So I think we should probably mark lua-cgi as unsupported instead of
> fixing the vulnerabilities.
I'd be happy with this. On the popcon figure, I am sure we can agree
to skip over a discussion on the general limitations of popcon data,
but in this particular instance I don't feel like
