On Du, 13 mar 11, 20:11:22, Dan wrote: > Yes I think that I was using woody or sarge and it took for ever to > update. Then I switched to Ubuntu. Sarge was released almost 6 years ago, hence my wondering ;) AFAIK sarge was also the big exception in Debian release history.
> > You seem to assume Debian Developers will write the security patches > > themselves. AFAIK patches are mostly backported and chromium might be > > updated since it is a leaf package. The Release Notes for squeeze have > > more info. > > What do you mean by leaf package? Other packages[1] don't depend on it. This has the side-effect that updating it is much less likely to break other stuff. Compare apt-cache rdepends chromium-browser with apt-cache rdepends xulrunner-1.9.1 (most Firefox vulnerabilities are actually in xulrunner). [1] "other packages" in this context doesn't include various chromium-browser-* packages, which are (most likely) built from the same source package. Regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
signature.asc
Description: Digital signature