Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities

To: Michael Gilbert <michael.s.gilbert@gmail.com>
Cc: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
From: Jordon Bedwell <jordon@envygeeks.com>
Date: Mon, 11 Oct 2010 10:39:37 -0500
Message-id: <[🔎] 1286811577.22195.2.camel@envygeeks>
In-reply-to: <[🔎] 20101011111548.1afb4e4c.michael.s.gilbert@gmail.com>
References: <87mxqlwbn5.fsf@mid.deneb.enyo.de> <[🔎] 19635.3521.655481.658955@chiark.greenend.org.uk> <[🔎] 20101011104029.1ac6c88a.michael.s.gilbert@gmail.com> <[🔎] 1286808364.18776.1.camel@envygeeks> <[🔎] 20101011111548.1afb4e4c.michael.s.gilbert@gmail.com>

On Mon, 2010-10-11 at 11:15 -0400, Michael Gilbert wrote:
> I highly doubt that there is anything malicious going on here, and there
> is always the "Debian does not hide problems" mantra.  The simplest,
> and most-likely explanation is that it was easier to update to the new
> upstream, rather than attempt to backport fixes for 11 separate issues.

Why assume somebody meant something malicious? I implied, that perhaps
there were smaller security upgrades which would have justified a
version jump... Really guy.

The serious problem with you assuming I implied that something malicious
is going on is the fact that we can pull the source that he uploaded to
Debian directly from Debian and view it.

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
  - From: Michael Gilbert <michael.s.gilbert@gmail.com>

References:
- Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>
- Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
  - From: Michael Gilbert <michael.s.gilbert@gmail.com>
- Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
  - From: Jordon Bedwell <jordon@envygeeks.com>
- Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
  - From: Michael Gilbert <michael.s.gilbert@gmail.com>

Prev by Date: Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
Next by Date: Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
Previous by thread: Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
Next by thread: Re: [SECURITY] [DSA-2115-2] New moodle packages fix several vulnerabilities
Index(es):
- Date
- Thread