Comment 4 for bug 888568

Curtis, thanks for the quick response. FWIW, it does make sense to me that a security contact should be able to target to a release in order to express clearly which products are affected, and that this would be generally useful to projects other than Ubuntu.