On Wed, 6 Aug 2008, Hannes Magnusson wrote: > On Wed, Aug 6, 2008 at 14:01, Derick Rethans <[EMAIL PROTECTED]> wrote: > > On Wed, 6 Aug 2008, Hannes Magnusson wrote: > > > >> On Wed, Aug 6, 2008 at 13:30, Pierre Joye <[EMAIL PROTECTED]> wrote: > >> > hi Marcus, > >> > > >> > On Wed, Aug 6, 2008 at 1:07 PM, Marcus Boerger <[EMAIL PROTECTED]> wrote: > >> >> Hello Stanislav, > >> >> > >> >> we should not mention the reported, unless they provided a patch, > >> > > >> > Except for security issue > >> > >> In which case, it should be noted that it is a security issue. > > > > No, we don't usually do that. There is no need to wake sleeping dogs. > > Security Enhancements and Fixes in PHP 5.2.6:
Sure, but it's not in the NEWS file. The reason for this is that sometimes it can take months for security issues to hit a release. Announcing security issues at release time should of course be done. regards, Derick -- HEAD before 5_3!: http://tinyurl.com/6d2esb http://derickrethans.nl | http://ezcomponents.org | http://xdebug.org -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
