Hosting Provided By

Re: [SECURITY] [DSA 1438-1] New tar packages fix several vulnerabilities

From: Luk Claes <luk(at)debian.org>
Date: Sat Dec 29 2007 - 05:03:34 EST

Bernd Eckenfels wrote:
> In article <20071229080401.GA4521@ftbfs.de> you wrote:

>> These releases are called 'point releases' and are prepared publicly.
>> Preperation mails to these point releases are periodicly sent to
>> debian-releases@lists.debian.org[1]. Also prior releases had
>> 'Miscellaneous Bugfixes', see eg. [2]. The list of 'Miscellaneous
>> Bugfixes' just got a bit bigger, as the last point releases was for
>> various reasons not 2 but 6 month ago.

>
> Hmmm, I think pushing point releases via the package pool and preparing a
> new release directory would limit the confusion. I dont see a need to make
> those packages available on security.d.o.
>
> I think in the past we did exactly that with proposed-updates.

There is no difference now, they are not available via security.debian.org. apt-cache policy <pkg> will tell you were they come from if you are in doubt.

Cheers

Luk

-- 
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Received on Sat Dec 29 05:04:19 2007

This message: [ Message body ]
Next message: Touko Korpela: "Re: (CVE-2007-0855) Preparation of the next stable Debian GNU/Linux update"
Previous message: Bernd Eckenfels: "Re: [SECURITY] [DSA 1438-1] New tar packages fix several vulnerabilities"
In reply to: Bernd Eckenfels: "Re: [SECURITY] [DSA 1438-1] New tar packages fix several vulnerabilities"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Mar 19 2008 - 06:54:46 EDT