Re: Q: security fixes
Am Donnerstag, 18. September 2014, 12:16:05 schrieb Don Armstrong:
> On Thu, 18 Sep 2014, Hans wrote:
> > is there any reason, why security fixes are done in sid and stable,
> > but not in testing? Latest example: apt.
>
> 1. Developer time[1]
>
> 2. Testing gets fixed automatically when packages move from unstable to
> testing; security updates generally migrate in two days or less.
>
> 1: There used to be a testing-security group which tried to update
> security issues directly in testing. If the security of testing is
> really important to you, consider becoming a DD or otherwise enable this
> work to be done.
Ah, thanks for the answer. No, no, security in testing is not such important
for me. It is just that I wondered, because unstable is newer than testing and
stable older than testing. I just imagined, security fixed versions go
automatically directly from sid to testing, not after a delay. However, I know
that ALL packages in testing got a delay by changing from sid to testing. I
did not know, that security-fixed packages got this delay, too.
So it is, you fix in unstable and testing will be fixed by migrating packagages
to testing. That is also ok for me.
So, this makes all clear. Thanks for the response.
Happy hacking
Hans
Reply to: