[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Switching to mozilla ESR in stable-security



Hi,
we need to change the way security fixes are handled for Mozilla
in stable-security. The backporting of security fixes is no
longer sustainable resource-wise.

As such, we'll switch to releasing the ESR releases of iceweasel
and icedove in stable-security. 
Reverse-deps of the older xulrunner libs have negligable security
impact and we won't update them any further.

One problematic aspect are the various xul-ext-* packages currently
packaged. It's very likely that some of them will break with ESR17
and ESR24 in the future. 

However, there's not much we can do here. We can select a narrow (!)
set of important addons (e.g. enigmail for Icedove) that we will
keep in sync through stable-security, but that doesn't scale for
the full scale of Mozilla extensions currently packaged. 

In the future the majority of packages should thus rather be installed
through http://addons.mozilla.org instead of Debian packages.

If you maintain an extension, you can test the compatibility with
the packages already available at http://people.debian.org/~jmm/

Cheers,
        Moritz







Reply to: