Security Response Team / EOL
Michael A. Peters
mpeters at mac.com
Sat Apr 29 16:10:21 UTC 2006
On Sat, 2006-04-29 at 11:54 -0400, Jesse Keating wrote:
> Ok, here's the source of our problem. You've assumed that security
> fixes have to be backported. Nowhere is this / should this be said.
> I'm perfectly fine with doing package UPgrades to fix a security issue.
> I just don't want to see upgrades just for the sake of upgrades.
> Upgrades should happen only to resolve a security issue.
I agree with that.
No new packages in EOL releases - if the user wants that shiny new
package w/o upgrading, they are free to get the src.rpm and rebuild it.
Version updates should only fix security issues.
More information about the fedora-extras-list