[Secure-testing-team] Comparing NVD and Debian CVE tracking
Petter Reinholdtsen
pere at hungry.com
Fri Apr 13 12:12:33 UTC 2012
[Petter Reinholdtsen 2011-01-28]
> I believe it is best to keep the CPE ids of Debian source packages
> in each individual package source file, to increase the chance of
> keeping it up-to-date and to allow those knowing the package best to
> control the setting. But for now I have settled for a central file,
> to get started before a way to store it in the source package is in
> place.
I finally found some time to work on this again today, and wrote
<URL: http://wiki.debian.org/CPEtagPackagesDep > as a DEP to get the
CPE information into each individual package.
Anyone interested in working on this with me?
--
Happy hacking,
Petter Reinholdtsen
More information about the Secure-testing-team
mailing list