On Mon, Aug 06, 2012 at 10:06:06PM +0200, Giuseppe Iuculano wrote: > On 06/08/2012 21:30, Moritz Mühlenhoff wrote: > > Guiseppe, what are your plans for Chromium in Wheezy? Are you optimistic > > to keep up with security triage and shall we include an additional > > recommendation for Chromium? > > As we (the security team) discussed some time ago, if we switch to a > model, where the current releases are merely rebuild on stable, I can > take care of it.
Great. Updated text below: -------- Debian 7.0 includes several browser engines which are affected by a steady stream of security vulnerabilities. The high rate of vulnerabilities and partial lack of upstream support in the form of long term branches make it very difficult to support these browsers with backported security fixes. Additionally, library interdepencies make it impossible to update to newer upstream releases. As such, browsers built upon the webkit, qtwebkit and khtml engines are included in Wheezy, but not covered by security support. These browsers should not be used against untrusted websites. For general web browser use we recommend browsers building on the Mozilla xulrunner engine (Iceweasel and Iceape) or Chromium. Xulrunner has had a history of good backportability for older releases over the previous release cycles. Chromium —while built upon the Webkit codebase— is a leaf package, which will be kept up-to-date by rebuilding the current Chromium releases for stable. -------- Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org