NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

misc/47015: GIMP README link Secunia problem



>Number:         47015
>Category:       misc
>Synopsis:       GIMP README link Secunia problem
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    misc-bug-people
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Fri Sep 28 15:40:00 +0000 2012
>Originator:     joseph sheridan
>Release:        -
>Organization:
Reaction Information Security
>Environment:
-
>Description:
Hi,

I have just noticed that a link on a README page 
(http://ftp.netbsd.org/pub/pkgsrc/current/pkgsrc/graphics/gimp/README.html) to 
a vulnerability I identified in GIMP 2.6 does not link back to my site (or CVE, 
which does link to my site). Instead it links to Secunia - 
http://secunia.com/advisories/49314/ and passes on a good amount of Google Page 
Rank to them (missing out my site entirely).

The trouble is that Secunia never links back to the original author's advisory 
with an HTML link (they give only a plaintext link) and this removes all the 
benefit in terms of page rank, domain authority and search engine rankings. I 
believe this practise fundamentally breaks the principles of the internet and 
the ideals of the open source movement. My original advisory is at 
http://www.reactionpenetrationtesting.co.uk/advisories/scriptfu-buffer-overflow-GIMP-2.6.html.
 

I am requesting that the README file is updated to point to my site (or CVE 
mitre) and for you to question Secunia as to why they don't pass on HTML links 
to the original authors (retorical - they want to keep all the page rank to 
themselves). I would also suggest that you should stop linking to Secunia if 
they refuse to link to others.

I have also requested that Secunia change their linking model and am waiting 
for a reply.

Best regards,

Joseph Sheridan

Joseph Sheridan
Director
CHECK Team Leader, CREST Infrastructure, CREST Application, CISSP
Tel: 07812052515
Web: www.reactionis.co.uk 
Email: joe%reactionis.co.uk@localhost





>How-To-Repeat:

>Fix:



Home | Main Index | Thread Index | Old Index