[arch-general] lcms - needs upgrade because of security
Allan McRae
allan at archlinux.org
Sun Aug 15 08:16:26 EDT 2010
On 15/08/10 07:10, Xavier Chantry wrote:
> On Sat, Aug 14, 2010 at 9:54 PM, Kurt J. Bosch
> <kjb-temp-2009 at alpenjodel.de> wrote:
>> Am 2010-08-14 21:48, schrieb Laurent Carlier:
>>>
>>> You should fill a bugreport as there is security issues
>>>
>> No. Last time I did this it was rejected -
>> http://bugs.archlinux.org/task/10679
>
> That reject was plain wrong, we should encourage users to give
> visibility to security updates.
> However that was 2 years ago, so please let me know if this happens again.
>
I agree fully. Serious security issues in our packages should always be
reported to the bug tracker even if the fix is just to update the
package. It helps inform everyone about the issue and prioritize the
update as being important for the developer involved.
Allan
More information about the arch-general
mailing list