Ubuntu CVE Tracker

Code review comment for ~mainek00n/ubuntu-cve-tracker:patch-1

  1. Git
  2. lp:~mainek00n/ubuntu-cve-tracker
  3. patch-1
  4. Merge into master
Revision history for this message
Mark Esler (eslerm) wrote :

For active/CVE-2021-33503, it should be `upstream_python-urllib3: released (1.26.5)`.

This is a bit clearer if you look at:
 - https://github.com/urllib3/urllib3/releases/tag/1.26.4
 - https://github.com/urllib3/urllib3/commit/2d4a3fee6de2fa45eb82169361918f759269b4ec
 - https://github.com/urllib3/urllib3/releases/tag/1.26.5
(notice the dates)

You can also verify the commit with:
 - https://github.com/urllib3/urllib3/commits/1.26.4
 - https://github.com/urllib3/urllib3/commits/1.26.5

For the upstream field we want to know the upstream version number. What is the difference between an upstream version number and Debian's version number? What is the difference between those and Ubuntu?

https://www.ducea.com/2006/06/17/ubuntu-package-version-naming-explanation/

review: Needs Fixing

« Back to merge proposal