canmove, Confirmed users
120
edits
Security Severity Ratings: Difference between revisions
deprecating sg:investigate
(deprecating sg:investigate) |
|||
| Line 93: | Line 93: | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<th scope="row">sg:investigate</th> | <th scope="row"><strike>sg:investigate</strike></th> | ||
<td align="left" valign="top"><p> | <td align="left" valign="top"><p>DEPRECATED. Use sg:audit for legitimate code audit bugs, otherwise use the most appropriate status code given the bug state.</p> | ||
<td align="left" valign="top"> | <td align="left" valign="top"> | ||
<p>Further research is required to determine exploitability</p> | <p>Further research is required to determine exploitability</p> | ||
<p>Bugs that involve reviewing the codebase to discover potentially dangerous implementation patterns</p> | <p>Bugs that involve reviewing the codebase to discover potentially dangerous implementation patterns</p> | ||
</td> | </td> | ||
</tr> | |||
<tr> | |||
<th scope="row">sg:audit</th> | |||
<td align="left" valign="top"><p>Bug requires a code audit to investigate potential security problems.</p></td> | |||
<td align="left" valign="top"><p>Look for pattern x in library y</p> | |||
<p>Audit file z for string buffer abuse.</p></td> | |||
</tr> | </tr> | ||