Not sure. Imho it's one of those small things that is very questionable if it should have got an CVE # to start with.
For example RedHat downgraded the issue to low/low (lowest possible rating) once explained what it really was about. But we should probably notify CVE that the bug has been fixed. tis 2009-10-13 klockan 11:14 +1300 skrev Amos Jeffries: > Are we going to acknowledge this vulnerability with a SQUID:2009-N alert? > The reports seem to indicate it can be triggered remotely by servers. > > It was fixed during routine bug closures a while ago so we just need to > wrap up an explanation and announce the fixed releases. > > Amos
