[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: a question about BTS severities

Joey Hess <joey@kitenet.net> wrote:
> Similarly, I don't think a bug is grave if it makes a package unusable by
> just one person in an odd sitution. On the other hand, I think all security
> and data loss bugs are grave, even if only a few people can trigger them.

I disagree.  If a package causes a remote root exploit to be available, even
if it's only in a very specific configuration, I would say that it is critical.
Now how this applies to the other two grades, IMHO should be decided on a
case by case basis.

> What do other think, and have you seen seeing the same runaway bug severity
> inflation I have?

I've certainly seen an increase of release critical bugs recently.  And I
agree that sometimes they are rather overrated, but I don't think we should
make any decisions that we might come to regret later just because of it.
Debian GNU/Linux 2.1 is out! ( http://www.debian.org/ )
Email:  Herbert Xu ~{PmV>HI~} <herbert@gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

Reply to: