On Du, 13 mar 11, 20:11:22, Dan wrote:
> Yes I think that I was using woody or sarge and it took for ever to
> update. Then I switched to Ubuntu.
Sarge was released almost 6 years ago, hence my wondering ;) AFAIK sarge
was also the big exception in Debian release history.
> > You seem to assume Debian Developers will write the security patches
> > themselves. AFAIK patches are mostly backported and chromium might be
> > updated since it is a leaf package. The Release Notes for squeeze have
> > more info.
>
> What do you mean by leaf package?
Other packages[1] don't depend on it. This has the side-effect that
updating it is much less likely to break other stuff. Compare
apt-cache rdepends chromium-browser
with
apt-cache rdepends xulrunner-1.9.1
(most Firefox vulnerabilities are actually in xulrunner).
[1] "other packages" in this context doesn't include various
chromium-browser-* packages, which are (most likely) built from the same
source package.
Regards,
Andrei
--
Offtopic discussions among Debian users and developers:
http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
Attachment:
signature.asc
Description: Digital signature