On Mon, 08 Jun 2015, Alessandro Ghedini wrote: > On lun, giu 08, 2015 at 02:36:17 +0200, Raphael Hertzog wrote: > > Dear members of the security team, > > > > Craig told me (cf message below) that you refused new upstream releases of > > Wordpress to fix security issues in stable/oldstable. Since we already did > > that in the past with Yves-Alexis Perez, what is the reason of this change > > of policy? > > I did not refuse the update. I simply pointed out that the new upstream > release > had several changes that didn't seem appropriate for a stable upload and > suggested to seek the release team's opinion about them. Though I can see how > that could have been misinterpreted.
I don't think that we seeked the stable RM's approval for any previous upload that introduced a new upstream version, Yves-Alexis, do you remember? AFAIK if the securiy team is OK with the new upstream release on security.debian.org, then it's good enough. It's a matter of doing the right thing for our users. And I believe that everybody in the wordpress community (developers and users alike) want to have the latest version since that's the only one truly supported. Craig has been doing much more backporting work than what I used to do in the past and it would be sad to impose him stricter rules just because he made the efforts that I did not do at that time. Cheers, -- Raphaël Hertzog ◈ Debian Developer Support Debian LTS: http://www.freexian.com/services/debian-lts.html Learn to master Debian: http://debian-handbook.info/get/ -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org