Re: Q: security fixes

To: debian-user@lists.debian.org
Subject: Re: Q: security fixes
From: Hans <hans.ullrich@loop.de>
Date: Thu, 18 Sep 2014 21:27:17 +0200
Message-id: <[🔎] 6443566.SSyEzI2zzV@protheus2>
In-reply-to: <[🔎] 20140918191605.GL8699@teltox.donarmstrong.com>
References: <[🔎] 1649673.FnzDT4JpbT@protheus2> <[🔎] 20140918191605.GL8699@teltox.donarmstrong.com>

Am Donnerstag, 18. September 2014, 12:16:05 schrieb Don Armstrong:
> On Thu, 18 Sep 2014, Hans wrote:
> > is there any reason, why security fixes are done in sid and stable,
> > but not in testing? Latest example: apt.
> 
> 1. Developer time[1]
> 
> 2. Testing gets fixed automatically when packages move from unstable to
> testing; security updates generally migrate in two days or less.
> 
> 1: There used to be a testing-security group which tried to update
> security issues directly in testing. If the security of testing is
> really important to you, consider becoming a DD or otherwise enable this
> work to be done.

Ah, thanks for the answer. No, no, security in testing is not such important 
for me. It is just that I wondered, because unstable is newer than testing and 
stable older than testing. I just imagined, security fixed versions go 
automatically directly from sid to testing, not after a delay. However, I know 
that ALL packages in testing got a delay by changing from sid to testing. I 
did not know, that security-fixed packages got this delay, too. 

So it is, you fix in unstable and testing will be fixed by migrating packagages 
to testing. That is also ok for me. 

So, this makes all clear. Thanks for the response.

Happy hacking

Hans

Reply to:

References:
- Q: security fixes
  - From: Hans <hans.ullrich@loop.de>
- Re: Q: security fixes
  - From: Don Armstrong <don@debian.org>

Prev by Date: Re: Q: security fixes
Next by Date: Re: Upgrading to Jessie
Previous by thread: Re: Q: security fixes
Next by thread: Re: Q: security fixes
Index(es):
- Date
- Thread