-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 13 Dec 2002 11:54:43 -0600, David van Hoose wrote:
> I sent RedHat a message addressing the issue about how they are > releasing older packages with their set of security fixes This is good. Backporting security fixes doesn't have the side-effect of introducing new and disappointing bugs when shipping a new version of some software. Testing new versions would require additional QA resources and additional time. Even if a new version of some package ran fine in Red Hat Linux 8.0, it might not run as fine in the different environment of Red Hat Linux 7.x. New versions of packages are better prepared for the next version of the distribution. New versions are not always better as the xinetd case has shown, for instance. > rather than > helping patch the program's CVS so that ALL of the newer versions of > the program will be patched. Backporting a fix does not imply that the current release is not fixed. Red Hat often must prepare and maintain fixes for all their distributions which are still supported. > I find that RedHat is in essence pulling > a Micro$oft in that they will not share. The source/patch for is always available. > I find it kind of iritating that RH just released an update for KDE > 3.0.3 instead of releasing 3.0.5 which had the same fixes. See above. At some point in time they had prepared KDE 3.0.3 and started pushing it through QA. Without some sort of "freeze" they could never start the testing. > Some > programs should be tested, but others are already being tested and > fixed on a daily basis. I don't think they like the idea of out-sourcing their QA into the community. ;) > I think that if we all complain about this, that they might modify > their policy on security fixes. If you are concerned about the security of KDE 3.0.3 or if you are affected by a bug in KDE 3.0.3, submit a bug report at: https://bugzilla.redhat.com - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) iD8DBQE9+if30iMVcrivHFQRAhYIAJ0Qt6+y6P8U7xX8z6nruA5ohAOwyACfSsE3 d9hjTh22N1BgnnHFBnj5IxI= =KKLu -----END PGP SIGNATURE----- -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
