Re: [SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities

To: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
From: Ralph Katz <ralph.katz@rcn.com>
Date: Sat, 25 Mar 2006 10:00:45 -0500
Message-id: <[🔎] 44255B1D.5030003@rcn.com>
In-reply-to: <[🔎] slrne2af1n.6vh.jmm@inutil.org>
References: <[🔎] slrne2af1n.6vh.jmm@inutil.org>

Moritz Muehlenhoff wrote:

> It's mandatory to subscribe to debian-security-announce if you install
> security updates. While most upgrades can run unattended there will always
> be corner cases, that require special attention of the local admin installing
> the update. A kernel update with an ABI bump is such a corner case.
>

Mandatory?!  Then isn't it a bug in the debian installation process to
not mention this?

How can we advise users (like me) to add  security.debian.org to
/etc/apt/sources.list and not mention the mandatory
debian-security-announce subscription?

I'm sure many debian users and sys admins will miss this upgrade by not
knowing such subscription is required.

Respectfully,
Ralph

Reply to:

References:
- Re: [SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
  - From: Moritz Muehlenhoff <jmm@inutil.org>

Prev by Date: Re: [SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
Next by Date: Re: bug in tar 1.14-2.1
Previous by thread: Re: [SECURITY] [DSA 1017-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
Next by thread: AW: [SECURITY] [DSA 1018-1] New Linux kernel 2.4.27 packages fix several vulnerabilities
Index(es):
- Date
- Thread