Re: can i upload this to security.d.o?
On Mon, Mar 15, 2004 at 06:45:20AM +0100, martin f krafft wrote:
> also sprach Matt Zimmerman <email@example.com> [2004.03.14.2239 +0100]:
> > Put simply, having a bug in a security-related package is not the same as
> > having a security-related bug (vulnerability). security.debian.org and DSAs
> > are used to address the latter, not the former.
> I am fully aware of that. However, what happens when a security-related
> bugfix causes another packages to become unusable?
Usually it doesn't; the kernel is a special case because it has so many
source-oriented dependency relationships. Still, proposed-updates seems
like the correct route.