[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: can i upload this to security.d.o?

On Mon, Mar 15, 2004 at 06:45:20AM +0100, martin f krafft wrote:

> also sprach Matt Zimmerman <mdz@debian.org> [2004.03.14.2239 +0100]:
> > Put simply, having a bug in a security-related package is not the same as
> > having a security-related bug (vulnerability).  security.debian.org and DSAs
> > are used to address the latter, not the former.
> I am fully aware of that. However, what happens when a security-related
> bugfix causes another packages to become unusable?

Usually it doesn't; the kernel is a special case because it has so many
source-oriented dependency relationships.  Still, proposed-updates seems
like the correct route.

 - mdz

Reply to: