From: Kurt Lieber <klieber@gentoo.org>
To: gentoo-dev@lists.gentoo.org
Subject: Re: [gentoo-dev] GLEP 19, reloaded (again)
Date: Mon, 9 Aug 2004 10:02:12 +0000 [thread overview]
Message-ID: <20040809100212.GK29077@mail.lieber.org> (raw)
In-Reply-To: <20040809063416.GA13690@kroah.com>
[-- Attachment #1: Type: text/plain, Size: 1647 bytes --]
On Sun, Aug 08, 2004 at 11:34:16PM -0700 or thereabouts, Greg KH wrote:
> So what would happen for security fixes? Rely on the latest release
> from upstream to be used instead?
Yes, in most cases.
> This can cause real problems, as a lot of SATA users just found out with
> the most recent Fedora kernel update due to the security fix. They went
> with the most recent kernel, which happened to rename their disk drives.
Yes, but backporting security fixes to code that the original author never
planned to have it used with causes its own set of problems.
> What is the downside of just backporting the security fixes to the
> versions marked "stable" (becides developer time)?
Don't discount "developer time" as inconsequential. We already have issues
with things getting patched in a timely fashion. Trying to backport (and
test!) everything will only make it worse.
Another gentoo-specific reason is the fact that, right now, our QA is
inadequate to support backporting. We're setting ourselves up for failure
if we set a policy of backporting all security fixes without having
adequate QA in place to make sure they work properly. (and no, GLEP 19
isn't designed to deal with QA -- that's a whole separate GLEP entirely)
In general, the GLEP suggests not backporting. If there are extenuating
circumstances, then the package maintainer is free to backport at their
discretion. A good example of this would be a security fix that is only
released in a major revision of the package. (MySQL 5.0, for instance) In
that case, it might make sense to backport the fix to MySQL 4.x.
--kurt
[-- Attachment #2: Type: application/pgp-signature, Size: 189 bytes --]
next prev parent reply other threads:[~2004-08-09 10:00 UTC|newest]
Thread overview: 64+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-08-08 18:51 [gentoo-dev] GLEP 19, reloaded (again) Kurt Lieber
2004-08-09 5:04 ` Dylan Carlson
2004-08-09 9:52 ` Kurt Lieber
2004-08-09 14:21 ` Chris Gianelloni
2004-08-10 0:01 ` Kurt Lieber
2004-08-10 0:13 ` Corey Shields
2004-08-10 1:04 ` Olivier Crete
2004-08-10 13:26 ` Kurt Lieber
2004-08-10 13:27 ` Chris Gianelloni
2004-08-10 13:32 ` Kurt Lieber
2004-08-10 13:23 ` Chris Gianelloni
2004-08-10 13:24 ` Kurt Lieber
2004-08-10 13:55 ` Chris Gianelloni
2004-08-10 20:25 ` Jeremy Maitin-Shepard
2004-08-10 23:24 ` Kurt Lieber
2004-08-11 14:23 ` Chris Gianelloni
2004-08-11 16:05 ` Dylan Carlson
2004-08-11 17:51 ` Paul de Vrieze
2004-08-11 15:44 ` John Davis
2004-08-10 13:26 ` Corey Shields
2004-08-10 13:48 ` Chris Gianelloni
2004-08-10 14:20 ` Paul de Vrieze
2004-08-10 15:01 ` Chris Gianelloni
2004-08-10 14:27 ` Corey Shields
2004-08-10 15:03 ` Chris Gianelloni
2004-08-10 18:05 ` Spider
2004-08-10 19:03 ` Chris Gianelloni
2004-08-10 19:23 ` Olivier Crete
2004-08-10 20:43 ` Chris Gianelloni
2004-08-11 4:22 ` Marius Mauch
2004-08-11 9:31 ` Paul de Vrieze
2004-08-11 14:32 ` Chris Gianelloni
2004-08-10 23:10 ` Kurt Lieber
2004-08-10 20:34 ` Jeremy Maitin-Shepard
2004-08-11 7:07 ` Spider
2004-08-11 7:50 ` Jeremy Maitin-Shepard
2004-08-11 8:54 ` Spider
2004-08-09 22:11 ` Dylan Carlson
2004-08-09 22:34 ` Corey Shields
2004-08-09 15:23 ` Corey Shields
2004-08-10 20:43 ` Jeremy Maitin-Shepard
2004-08-09 6:34 ` Greg KH
2004-08-09 7:46 ` Paul de Vrieze
2004-08-09 7:56 ` Greg KH
2004-08-09 7:59 ` Paul de Vrieze
2004-08-09 10:02 ` Kurt Lieber [this message]
2004-08-09 7:43 ` Barry Shaw
2004-08-09 7:51 ` Paul de Vrieze
2004-08-09 20:56 ` Olivier Crete
2004-08-09 21:12 ` Corey Shields
2004-08-09 21:33 ` Olivier Crete
2004-08-09 21:45 ` Corey Shields
2004-08-09 22:02 ` Olivier Crete
2004-08-09 22:15 ` Dylan Carlson
2004-08-10 0:05 ` Kurt Lieber
2004-08-10 11:33 ` Paul de Vrieze
2004-08-10 18:33 ` Dylan Carlson
2004-08-10 20:19 ` Chris Bainbridge
2004-08-10 21:24 ` Chris Gianelloni
2004-08-11 2:59 ` Chris Bainbridge
2004-08-10 23:07 ` Kurt Lieber
2004-08-11 2:40 ` Chris Bainbridge
2004-08-11 3:21 ` Marius Mauch
2004-08-11 12:21 ` Chris Bainbridge
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20040809100212.GK29077@mail.lieber.org \
--to=klieber@gentoo.org \
--cc=gentoo-dev@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox