> It appears there has been precisely one security SRU of botan1.10 ever, in Ubuntu 14.04. So what difference does a lack of upstream security support make to the releasability of this package in 18.04?
I think there's a difference between lack of human resources to do these updates versus updates that can be done. I personally see it to be unwise to ship a package in an LTS which will be deprecated by the end of the year and is only used by leaf packages and already EOL software. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1760263 Title: RM: will become EOL upstream in December, not in testing To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/botan1.10/+bug/1760263/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs