particle-os/debian-koji
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

PR#1688: clarify fixed/affected versions in cve announcement

Browse source 
Merges #1688
https://pagure.io/koji/pull-request/1688
This commit is contained in:
Mike McLean 2019-10-09 10:59:01 -04:00
commit 79921c8922
1 changed files with 5 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

6
docs/source/CVE-2019-17109.rst
View file

@ -22,7 +22,8 @@ fixed version as soon as possible.
Bug fix
-------
We are releasing updates for each affected version of Koji to fix this bug.
We are releasing updates for affected versions of Koji from within the
past two years.
The following releases all contain the fix:
- 1.18.1
@ -33,6 +34,9 @@ The following releases all contain the fix:
Note: the legacy-py24 branch is unaffected since it is client-only (no hub).
Anyone using a Koji version older than two years should update to a more
current version as soon as possible.
For users who have customized their Koji code, we recommend rebasing your work
onto the appropriate update release. Please see Koji
`issue #1634 <https://pagure.io/koji/issue/1634>`_ for the code details.