Re: can i upload this to security.d.o?

To: debian developers <debian-devel@lists.debian.org>
Subject: Re: can i upload this to security.d.o?
From: Matt Zimmerman <mdz@debian.org>
Date: Mon, 15 Mar 2004 00:16:27 -0800
Message-id: <[🔎] 20040315081627.GH28592@alcor.net>
Mail-followup-to: debian developers <debian-devel@lists.debian.org>
In-reply-to: <[🔎] 20040315054520.GA12869@piper.madduck.net>
References: <[🔎] 20040314105402.GA29499@piper.madduck.net> <[🔎] 20040314213921.GU28592@alcor.net> <[🔎] 20040315054520.GA12869@piper.madduck.net>

On Mon, Mar 15, 2004 at 06:45:20AM +0100, martin f krafft wrote:

> also sprach Matt Zimmerman <mdz@debian.org> [2004.03.14.2239 +0100]:
> > Put simply, having a bug in a security-related package is not the same as
> > having a security-related bug (vulnerability).  security.debian.org and DSAs
> > are used to address the latter, not the former.
> 
> I am fully aware of that. However, what happens when a security-related
> bugfix causes another packages to become unusable?

Usually it doesn't; the kernel is a special case because it has so many
source-oriented dependency relationships.  Still, proposed-updates seems
like the correct route.

-- 
 - mdz

Reply to:

Follow-Ups:
- Re: can i upload this to security.d.o?
  - From: martin f krafft <madduck@debian.org>

References:
- can i upload this to security.d.o?
  - From: martin f krafft <madduck@debian.org>
- Re: can i upload this to security.d.o?
  - From: Matt Zimmerman <mdz@debian.org>
- Re: can i upload this to security.d.o?
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Re: Policy on Account creation and deletion?
Next by Date: Re: Policy on Account creation and deletion?
Previous by thread: Re: can i upload this to security.d.o?
Next by thread: Re: can i upload this to security.d.o?
Index(es):
- Date
- Thread