On 10/31/25 11:06, Petr Menšík wrote:
Yes, we do not backport medium or low CVEs always, especially if fixing them in older versions is complicated and requires non-trivial rewriting.
I'd be curious how many users are actually aware of that. I have a related blog post… How much security is in long-term support (LTS)?https://blog.hartwork.org/posts/how-much-security-is-in-long-term-support/
…from March 2025 with examples.
