Re: bluez-utils 2.19-1 not in Sarge security updates?

To: William Ballard <nospam_50916@alltel.net>
Cc: debian-user@lists.debian.org, 323365@bugs.debian.org
Subject: Re: bluez-utils 2.19-1 not in Sarge security updates?
From: Edd Dumbill <ejad@debian.org>
Date: Sun, 25 Sep 2005 23:22:11 +0100
Message-id: <[🔎] 1127686931.26519.18.camel@saag.bunker.heddley.com>
In-reply-to: <[🔎] 20050925220620.GA27436@alltel.net>
References: <[🔎] 20050925220620.GA27436@alltel.net>

On Sun, 2005-09-25 at 18:06 -0400, William Ballard wrote:
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=323365
> 
> Why is this grave security bugfix not in Sarge security updates, more 
> than a month later?  I know there's a "good reason," but in my few years 
> of using Debian I have always run unstable.

It is, version 2.15-1.1, you just missed it.

We don't upload new upstream versions to stable to fix security holes.
Where we can we just backport the fix.  This is so as not to cause
knock-on problems introduced in new versions.

In the case of bluez-utils, this is exactly what was done -- see 
http://packages.debian.org/stable/admin/bluez-utils
http://packages.debian.org/changelogs/pool/main/b/bluez-utils/bluez-utils_2.15-1.1/changelog

I would not have closed the bug if the fix hadn't gone in.

-- Edd

Reply to:

References:
- bluez-utils 2.19-1 not in Sarge security updates?
  - From: William Ballard <nospam_50916@alltel.net>

Prev by Date: Re: very slow usb 2.0
Next by Date: Re: 4ol 4rt files:
Previous by thread: bluez-utils 2.19-1 not in Sarge security updates?
Next by thread: Re: bluez-utils 2.19-1 not in Sarge security updates?
Index(es):
- Date
- Thread