Changing link filtering
pjp at fedoraproject.org
pjp at fedoraproject.org
Thu Nov 12 17:44:46 UTC 2015
Hello David,
> On Thursday, 12 November 2015 8:35 PM, David Cafaro <dac at cafaro.net> wrote:
> https://bugzilla.redhat.com/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&classification=Fedora&f1=status_whiteboard&keywords=SecurityTracking%2C%20&keywords_type=allwords&list_id=2661465&o1=notsubstring&priority=unspecified&query_format=advanced&v1=fst_owner%3D
>
It shows a single bug BZ#1209214, right? It appears to be filed by a user
and then converted into a 'SecurityTracking' bug. Generally 'SecurityTracking'
bugs are created by automated tools which set both priority and severity to
be same.[*]
ex:-> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-2927
-> https://bugzilla.redhat.com/show_bug.cgi?id=1279691
[*]-> https://bugzilla.redhat.com/page.cgi?id=fields.html#priority
> That have a severity rating of High, were being grouped under the
> Unknown listing, since priority was unspecified.
Most likely user missed to set the priority.
> I propose updating the links and any scripts to filter on Severity and
> not Priority as we are concerned with the security impact and not the
> projects chosen priority for the fix.
>
> Any issues with that?
I think above case is a one off. We need not change the query
on the FST page, but if we must, we could include both 'priorty'
and 'severity' field in the query.
---Regards
-P J P
http://feedmug.com
More information about the security-team
mailing list