Hey, On Mon, 2011-12-05 at 21:00 +0100, Simon Paillard wrote: > If the situation persists, it may be worth warning *squeeze* users, through a > dedicated DSA/d-security-announce, as well as a dedicated paragraph in the next > point release announce ? Yeah, that sounds sane. Unfortunately we (mostly myself) underestimated the amount of work that it would take and overestimated the help we would get, which is never a good thing. We briefly discussed this issue during the recent webkit hackfest and we are trying to figure out a more sustainable way of providing security support. If anyone would like to help, we can nominate people to the webkit security mailing list, and have an IRC meeting along with other WebKitGTK+ people to see what we could do about this, what do you say? Cheers, -- Gustavo Noronha Silva <kov@debian.org> Debian
Attachment:
signature.asc
Description: This is a digitally signed message part