[php-maint] Bug#422567: Bug#422567: security update in etch has same problem

sean finney seanius at debian.org
Thu May 24 14:56:28 UTC 2007

hi martin

On Thursday 24 May 2007 11:31, Martin Langhoff wrote:
> thanks for the update. This means that the regression introduced with
> the security upload is going to stay there for a while (until we get a
> point release of stable)?

was the regression introduced by the security upload, or was it just generally 
a problem with 5.2.0?  as far as i knew it was the latter... ?

> I'm not convinced that it's a good idea to sit on this regression... the
> options seem to be
>  - new secure package, eats data for breakfast (default)
>  - pin the package to the old vulnerable, non-data-eating
>  - use unofficial packages
>  - avoid etch

the unofficial packages have all of the recent security vulnerabilities in 
them as well, so i don't think it's so bad to have to use them.  and as far 
as the next point release goes, it should be Real Soon Now.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-php-maint/attachments/20070524/ba7ac739/attachment.pgp 

More information about the pkg-php-maint mailing list