[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Security fix for jquery-jplayer 2.1.0-1



On Sun, 2013-04-28 at 20:38 +0200, Bernhard R. Link wrote:
> * Niels Thykier <niels@thykier.net> [130427 09:18]:
> > On 2013-04-27 09:12, Vincent Bernat wrote:
> > > Not in the release team either but I disagree that switching to 3.0
> > > (quilt) is an unacceptable change.
[...]
> > While you are welcome to disagree, this type of change has been
> > considered unacceptable since the start of the freeze[1].
> >
> > [1] http://release.debian.org/wheezy/freeze_policy.html
> >
> > Admittedly, it was not explicitly listed under "Rule 1" at first, but it
> > was still considered unacceptable.
> 
> I suggest you document that a bit somewhere (for example in the url
> given above).

>From the page in question:

<quote>
Rule #1. In all cases, when preparing an upload, please do not make
changes to the package that are not related to fixing the bugs in
question. As a non-exhaustive list, this implies not:

Changing source format
Changing patch systems
</quote>

That text has been there since November.

> A change from 1.0 with no upstream modifications to 1.0 with modifications
> is about as big as the change to to 3.0 (quilt).
> So I'm quite suprised as well that someone could read those rules in a
> way to forbid using 3.0 to add the first patch to a package.

Changing to 3.0 (quilt) is "changing source format", so I'm not sure how
they can be read as /not/ forbidding doing so in a package which was
previously 1.0.

Regards,

Adam


Reply to: