David CHANIAL wrote: > -a specific tree > -a auto-masking solution of the package that is not => of a release needed > for > security update.
Unfortunately security issues are often fixed by regular version bumps. That is, security updates and feature updates are not seperated at all (see kernel). The choice is "backporting" security fixes, which is a lot of work (watching upstream SCM, ml, etc) or taking the upgrade path with new features, new bugs and a host of upgrades due to dependencies. Which options sounds worse? I don't know but recompiling core libs under my feets to upgrade production systems a few hundred miles away is not much fun. cheers Paul -- [email protected] mailing list
