[php-maint] Bug#422567: Bug#422567: security update in etch has same problem
sean finney
seanius at debian.org
Thu May 24 14:56:28 UTC 2007
hi martin
On Thursday 24 May 2007 11:31, Martin Langhoff wrote:
> thanks for the update. This means that the regression introduced with
> the security upload is going to stay there for a while (until we get a
> point release of stable)?
was the regression introduced by the security upload, or was it just generally
a problem with 5.2.0? as far as i knew it was the latter... ?
> I'm not convinced that it's a good idea to sit on this regression... the
> options seem to be
>
> - new secure package, eats data for breakfast (default)
> - pin the package to the old vulnerable, non-data-eating
> - use unofficial packages
> - avoid etch
the unofficial packages have all of the recent security vulnerabilities in
them as well, so i don't think it's so bad to have to use them. and as far
as the next point release goes, it should be Real Soon Now.
sean
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-php-maint/attachments/20070524/ba7ac739/attachment.pgp
More information about the pkg-php-maint
mailing list