[Secure-testing-team] Another syntax addition: <removed>
Moritz Muehlenhoff
jmm at inutil.org
Wed Oct 5 13:24:32 UTC 2005
Florian Weimer wrote:
> > The fix is to remove the package permanantly from the archive, as
> > it's broken anyway. This is a "fix", as etch will not be affected,
> > but not a complete fix for those who still have bidwatcher
> > installed. So this marks a package as addressed, only not with a
> > patch, but with a big hammer.
>
> But you can infer this information from the Sources files (and use the
> removed-packages file for double-checking). I don't think it's a good
> idea to duplicate this data.
It's not duplication, it's <removed> instead of <unfixed>. I'm against
inferring information, which might as well be clearly denoted.
It's fixed for the stable etch, that's precise, valuable information.
Everyone benefits from ensuring that all security bugs are tracked
and known when etch freezes, while only a subset of all users run testing
and benefit from DTSAs.
Cheers,
Moritz
More information about the Secure-testing-team
mailing list