To be clear: I do not think our bugfix updates (2.10.9 -> 2.10.10) are really much safer than the bigger updates (2.10 -> 2.12) in terms of likelihood of regressions. Actually I think we've had worse luck with regressions in stable releases; we tend to backport bad patches long before they show up in the next stable release. Our stable series get six months of security support and you're expected to move onto the next stable series shortly after it's released. Support for 2.10 ended *before* you released Xenial with 2.10.9. We've announced 16 vulnerabilities affecting 2.10.9 since then <https://webkitgtk.org/security.html>. It'd be great to get those fixes out to Ubuntu users.
Regarding the need to rebuild GNOME components. Fortunately, all of our documented API is guaranteed to be API/ABI stable indefinitely, but there is an undocumented unstable API as well. I know this is a problem. For 2.12 -> 2.14, I suggested rebuilding all apps using the unstable API (Epiphany/Evolution/Yelp) just to be safe, but actually Epiphany is the only required rebuild that I'm aware of. I've had a hard time convincing the relevant developer that the unstable API is a problem for distros, but the problem is fortunately going away, because we froze the DOM API last week, and we'll be removing or stabilizing all the unstable API for 2.16. So after next cycle, you won't have to be concerned about third party apps using the unstable API anymore, as it will all be gone. In the meantime, if you're concerned about third party apps breaking: I'm not aware of any third party app developers using WebKit2 at all, let alone any using the unstable portion of the DOM API (which is not available at all unless you define a macro to guarantee the developer knows it can break), let alone a portion of that API that has changed recently. If any such third-party developers exist, I would hope they would be smart enough to bundle WebKit, rather than rely on a system API that's clearly marked unstable, which they know can change at any time. So I think it's fairly low-risk; you just need to keep an eye on known users of the API until it goes away. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1618956 Title: Slideshow blank during live install To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ubiquity/+bug/1618956/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
