Bart Martens schrieb:
> Hi,
>
> Maybe I should do announcements like this :
>
> | Users of the Debian package "flashplugin-nonfree" can now run
> | "update-flashplugin-nonfree --install", since I've now updated the
> download url
> | and checkums to match the newest Flash Player version. S
On Wed, Nov 07, 2012 at 10:39:15AM +0100, Raphael Hertzog wrote:
> On Wed, 07 Nov 2012, Thijs Kinkhorst wrote:
> > I think we should do this only when it has been shown that applying the
> > fixes to the current version in stable(-security) is infeasible. Suppose
> > now a simple XSS is discovered,
On Wed, 07 Nov 2012, Thijs Kinkhorst wrote:
> I think we should do this only when it has been shown that applying the
> fixes to the current version in stable(-security) is infeasible. Suppose
> now a simple XSS is discovered, I would be very much in favour to just
> apply that fix.
I would as wel
On Wed, November 7, 2012 09:33, Raphael Hertzog wrote:
>> Are there any plans to further upgrade squeeze in this manner?
>
> I leave this to Yves-Alexis... It would be nice to formalize this
> approach with the security team.
I think we should do this only when it has been shown that applying the
Hi,
On Tue, 06 Nov 2012, Dominic Hargreaves wrote:
> On Fri, May 11, 2012 at 10:41:14PM +0200, Yves-Alexis Perez wrote:
> > Several vulnerabilities were identified in Wordpress, a web blogging
> > tool. As the CVEs were allocated from releases announcements and
> > specific fixes are usually not
5 matches
Mail list logo
