Le 01/11/2020 à 21:34, Colin Watson a écrit : > On Sun, Nov 01, 2020 at 03:13:24PM +0100, Xavier wrote: >> Ubuntu is based on testing and does not import our fixes after its >> release (except a few list), then it's normal to find a lot of >> vulnerabilities. > > It's not really relevant to this CITL list; but just on a point of > information, Ubuntu imports packages from unstable (and runs its own > equivalent of a testing migration process), not from testing.
Anyway they don't import CVE fixes after release (see my example)
