On 15/08/10 07:10, Xavier Chantry wrote:
On Sat, Aug 14, 2010 at 9:54 PM, Kurt J. Bosch
<kjb-temp-2009@xxxxxxxxxxxxx> wrote:
Am 2010-08-14 21:48, schrieb Laurent Carlier:
You should fill a bugreport as there is security issues
No. Last time I did this it was rejected -
http://bugs.archlinux.org/task/10679
That reject was plain wrong, we should encourage users to give
visibility to security updates.
However that was 2 years ago, so please let me know if this happens again.
I agree fully. Serious security issues in our packages should always be
reported to the bug tracker even if the fix is just to update the
package. It helps inform everyone about the issue and prioritize the
update as being important for the developer involved.
Allan