Re: Upcoming changes in advisory format

To: debian-security@lists.debian.org
Subject: Re: Upcoming changes in advisory format
From: Raphael Geissert <geissert@debian.org>
Date: Thu, 06 Jan 2011 13:07:46 -0600
Message-id: <[🔎] ig53u3$npf$1@dough.gmane.org>
References: <20101218120807.GA2987@galadriel.inutil.org> <[🔎] 20110106085356.GA30270@capsaicin.mamane.lu>

Lionel Elie Mamane wrote:

> On Sat, Dec 18, 2010 at 01:08:07PM +0100, Moritz Muehlenhoff wrote:
> 
>> Traditionally Debian security advisories have included MD5 check sums
>> of the updated packages.
> 
>> Since apt cryptographically enforces the integrity of the archive
>> for quite some time now, we've decided to finally drop the hash
>> values from our advisory mails.
> 
> The side-effect of that is that you are now listing only the source
> package name, and not anymore the binary package names. But to do the
> upgrade, the administrator of the machine has to select the binary
> packages for upgrade, or, to check if the testing/sid version the
> machine has is new enough, check the installed version of all binary
> packages built from that source package.

FTR, the template currently in use is not the final version.
Changes are still under discussion.

Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Reply to:

Follow-Ups:
- Re: Upcoming changes in advisory format
  - From: Joerg Jaspert <joerg@debian.org>

References:
- Re: Upcoming changes in advisory format
  - From: Lionel Elie Mamane <lionel@mamane.lu>

Prev by Date: Re: Upcoming changes in advisory format
Next by Date: Re: Bind security announce
Previous by thread: Re: Upcoming changes in advisory format
Next by thread: Re: Upcoming changes in advisory format
Index(es):
- Date
- Thread