Re: DSA 438 - bad server time, bad kernel version or information delayed?

[Florian Weimer <fw@deneb.enyo.de>]

Otavio Salvador wrote:

> If we provide an i386 image to fix a vulnerability and the same is
> found in other arch, then, someone can try to explore this. We need
> release all affected at same time to solve this.

But Debian doesn't do this any longer.  Do you really think Red Hat,
SuSE and all the others (including the majority of Debian users on x86)
should wait because Debian can't backport a security fix to, say, kernel
2.4.18 on the s390 architecture?