Re: Bad press related to (missing) Debian security

To: Marek Olejniczak <marek@olmar.poznan.pl>
Cc: debian-security@lists.debian.org
Subject: Re: Bad press related to (missing) Debian security
From: Steve Kemp <skx@debian.org>
Date: Mon, 27 Jun 2005 19:43:50 +0100
Message-id: <[🔎] 20050627184350.GA19509@steve.org.uk>
Reply-to: Steve Kemp <skx@debian.org>
In-reply-to: <[🔎] Pine.LNX.4.62.0506272033390.7162@orion>
References: <[🔎] 1119878719.42bffe3fdf2ba@webmail.in-berlin.de> <[🔎] 200506271550.24151.waja@gmx.de> <[🔎] 1119880458.22070.237235052@webmail.messagingengine.com> <[🔎] 200506271700.29891.jluehr@gmx.net> <[🔎] 42C04102.10307@zombino.com> <[🔎] 20050627182637.GN9833@alcor.net> <[🔎] Pine.LNX.4.62.0506272033390.7162@orion>

On Mon, Jun 27, 2005 at 08:39:43PM +0200, Marek Olejniczak wrote:

> I don't understand the philosophy of Debian security team. It's really so 
> difficult to push into sarge spamassassin 3.0.4 which is not vulnerable? 
> This version is in Debian testing and why this version can't be push into 
> stable?

  In some cases fixing a problem, which an upstream will not, or
 which the package maintainer cannot is *very* hard work.  (eg. Mozilla/
 Kernel images).

  In this particular case pushing the package itself isn't a hard
 job - the problem we're currently seeing isn't that the job is
 hard, but that only a very small number of people have the 
 authority/ability to push the update out.

Steve
--

Reply to:

Follow-Ups:
- Re: Bad press related to (missing) Debian security
  - From: Michael Stone <mstone@debian.org>

References:
- Bad press related to (missing) Debian security
  - From: "W. Borgert" <debacle@debian.org>
- Re: Bad press related to (missing) Debian security
  - From: Jan Wagner <waja@gmx.de>
- Re: Bad press related to (missing) Debian security
  - From: "Carl-Eric Menzel" <calle-debian@bitforce.com>
- Re: Bad press related to (missing) Debian security
  - From: Jan Lühr <jluehr@gmx.net>
- Re: Bad press related to (missing) Debian security
  - From: Adam Majer <adamm@zombino.com>
- Re: Bad press related to (missing) Debian security
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Bad press related to (missing) Debian security
  - From: Marek Olejniczak <marek@olmar.poznan.pl>

Prev by Date: Re: Bad press related to (missing) Debian security
Next by Date: Re: Bad press related to (missing) Debian security
Previous by thread: Re: Bad press related to (missing) Debian security
Next by thread: Re: Bad press related to (missing) Debian security
Index(es):
- Date
- Thread