[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Disturbing lack of FE security updates announcements!

Hi All,

This morning I've been working on fixing several security flaws in imlib2.
When I was done with fixing and building these, I started writing a
security update notification mail to send to fedora-package-announce redhat com
In the usual format for updates send to this list.

The Fedora Extras updates have there own numbering scheme seperate of that of FC,
so I started looking through the archives for the last update to give mine the next
free number, much to my shock the idenitifier for this security update is:

IOW, this is the 4th security announcement send on behalve of FE this year, that is
really BAD! Even worse, FEDORA-EXTRAS-2006-003 the previous announcement was also send
to the list by me?  Am I the only one taking the trouble to announce security updates??

When magazine XXX is going todo security stats on FE the will use the official
announcements to determine our response time and this will make us look bad, not to
mention the fact that this is really bad communication to our end users!

FESco, can you please mandate sending a mail to fedora-package-announce redhat com for
security related updates?



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]