On 08/15/2010 03:16 PM, Allan McRae wrote:
On 15/08/10 07:10, Xavier Chantry wrote:
On Sat, Aug 14, 2010 at 9:54 PM, Kurt J. Bosch <kjb-temp-2009@alpenjodel.de> wrote:
Am 2010-08-14 21:48, schrieb Laurent Carlier:
You should fill a bugreport as there is security issues
No. Last time I did this it was rejected - http://bugs.archlinux.org/task/10679
That reject was plain wrong, we should encourage users to give visibility to security updates. However that was 2 years ago, so please let me know if this happens again.
I agree fully. Serious security issues in our packages should always be reported to the bug tracker even if the fix is just to update the package. It helps inform everyone about the issue and prioritize the update as being important for the developer involved.
Allan
i'll take care of this. -- Ionuț