Holly Bostick wrote:
world. *Ob*viously. Because *ob*viously, emerge -uDNworld updates to the version of whatever containing the patch for the hole. No matter what your ACCEPT_KEYWORDS is set to, no matter what USE flags are enabled.
I also wanted to add something: sometimes patches are submitted and they don't fix the entire problem. Sometimes, they are just bad patches that somehow made it into the release. Humans after all control the versions, push the changes, and update keywords. We make mistakes. Computer just propogate that mistake at lightening speeds.
So in a production environment, to update immediately is not always the best advice. There should always be some $delay between when the patch is released, and it's applied to production. $delay being defined by your local policies, commitments, and need to CYA.
-- gentoo-user@gentoo.org mailing list
