On Mon, Oct 17, 2005 at 07:16:09AM +1000, Peter Flodin wrote: > On 17/10/05, Marcus Meissner <[EMAIL PROTECTED]> wrote: > > Security bugs will be fixed ... in the next snapshot. (or when continuois > > syncing is done, as soon as it is checked in.) > > > > Several security updates like for the released products will not be done. > > > > Ciao, Marcus > > Ok just some clarification (last time and I will update the wiki and > don't want to get it wrong :-) > > If we take the current state where we have a released 10.0 and 10.1 in alpha. > > 1. All fixes/updates in upstream packages are evaluated and applied to > the EDGE stream.
Yes. > 2. Security fixes that are severe (like Firefox 1.07) are also applied > to released 10.0 and published as an update. > a) Is there any guideline on the selection criteria (or does > 'severe' sum it up?) Hmm? Nothing has changed from 9.x to 10.0, security updates happen as before. > b) For how long are severe security fixes applied to Released? 6 > months until the next GM release? This happens like it was for the last years. For box releases we usually do that for 2 years. If EDGE still gets frozen and released every 6 months there is probably no need to change that cycle and currently no one has stepped up to me and told me that this will change. Ciao, Marcus (SUSE Security Teamlead) --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] All, I'm new to the list and missed the first part of this thread as it doesn't appear to be included in the replies. >From what has been stated I understand what the unstable repositories are, but I'm not sure what exactly is in stable. Is it the same as the last official release tree or something different. Thanks for clarifying. Daniel --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
