On Wed, Oct 22, 2003 at 05:36:42PM +0200, Sebastien Bacher wrote: > Package: gdm > Version: 2.4.1.6-2 > Severity: important > Tags: security > > A second security bug that need to be closed, fixed in gdm 2.4.4.4 upstream > for about one week (and on others distribs too, is the GDM maintainer taking > care of this package ?) :
>From the Security FAQ: Q: What is the policy for a fixed package to appear in security.debian.org? A: Security breakage in the stable distribution warrants a package on security.debian.org. Anything else does not.... Q: How is security handled for testing and unstable? A: The short answer is: it's not. Testing and unstable are rapidly moving targets and the security team does not have the resources needed to properly support those.... I know that my answer is not really a great 'practical' answer, it is, in fact, the best answer. For extra coverage, I'll cc: the package maintainer (according to packages.debian.org) for this package. HTH j -- ================================================== + It's simply not | John Keimel + + RFC1149 compliant! | [EMAIL PROTECTED] + + | http://www.keimel.com + ==================================================
