Re: How to handle an update that includes a regression fix and a new fix?

To: Roberto C. Sánchez <roberto@debian.org>, debian-lts@lists.debian.org
Subject: Re: How to handle an update that includes a regression fix and a new fix?
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Tue, 15 Dec 2020 12:30:17 +0100
Message-id: <[🔎] 2a09331c-6cb7-792b-682a-2e8013052deb@debian.org>
In-reply-to: <[🔎] 20201215011635.GF5756@connexer.com>
References: <[🔎] 20201215011635.GF5756@connexer.com>

On 15/12/2020 02:16, Roberto C. Sánchez wrote:

I am curious if there is a policy or best practice for how to handle a
package update containing both a regression fix and also a fix for a new
vulnerability.

If such a thing is not advisable or permissible, then is it best to
handle the regression as one update and then follow-up with the new
vulnerability fix as a subsequent update?

Just one update, and one announcement as a new DLA (-1) mentioning theregression fix. See e.g.


https://lists.debian.org/debian-security-announce/2020/msg00139.html
https://lists.debian.org/debian-lts-announce/2019/02/msg00032.html
https://lists.debian.org/debian-lts-announce/2020/06/msg00012.html

Cheers,
Emilio

Reply to:

Follow-Ups:
- Re: How to handle an update that includes a regression fix and a new fix?
  - From: Roberto C. Sánchez <roberto@debian.org>

References:
- How to handle an update that includes a regression fix and a new fix?
  - From: Roberto C. Sánchez <roberto@debian.org>

Prev by Date: Re: How to handle an update that includes a regression fix and a new fix?
Next by Date: (E)LTS report for November
Previous by thread: Re: How to handle an update that includes a regression fix and a new fix?
Next by thread: Re: How to handle an update that includes a regression fix and a new fix?
Index(es):
- Date
- Thread