Re: Accepted atftp 0.6.2 (i386 source)

To: debian-devel@lists.debian.org
Subject: Re: Accepted atftp 0.6.2 (i386 source)
From: Steve Langasek <vorlon@netexpress.net>
Date: Mon, 7 Jul 2003 13:23:57 -0500
Message-id: <[🔎] 20030707182355.GB12887@tennyson.netexpress.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20030707174849.GJ13727@deadbeast.net>
References: <E19ZDbP-0002ET-00@auric.debian.org> <[🔎] 20030707174849.GJ13727@deadbeast.net>

On Mon, Jul 07, 2003 at 12:48:49PM -0500, Branden Robinson wrote:
> On Sun, Jul 06, 2003 at 01:47:07PM -0400, Remi Lefebvre wrote:
> > Changes: 
> >  atftp (0.6.2) unstable; urgency=low
> >  .
> >    * Fixed local and remote buffer overflow (Closes: #196304)

> In the future, please upload security fixes with urgency=high.

I'm assuming this is only appropriate if the vulnerability affects
testing?  Since the main impact of setting the 'urgency' field is
affecting propagation time into testing, it doesn't seem appropriate to
give higher priority to a package which only suffered from a
vulnerability in the unstable version.

-- 
Steve Langasek
postmodern programmer

Attachment: pgpdWwAjPmqQC.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: Accepted atftp 0.6.2 (i386 source)
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Accepted atftp 0.6.2 (i386 source)
  - From: Nick Phillips <nwp@nz.lemon-computing.com>

References:
- Re: Accepted atftp 0.6.2 (i386 source)
  - From: Branden Robinson <branden@debian.org>

Prev by Date: Debian/amd64 at Ottawa Linux Symposium [July 24th 2003]
Next by Date: Re: gcc on a biarch system
Previous by thread: Re: Accepted atftp 0.6.2 (i386 source)
Next by thread: Re: Accepted atftp 0.6.2 (i386 source)
Index(es):
- Date
- Thread