We have something of a problem with F9. A week ago, we should have pushed out an update for 2.6.25.11 which fixes an exploitable security hole. It was fixed in CVS on Sunday, and a build made available shortly afterwards.
It's been held up from being pushed to updates-final due to problems with the wireless patches that introduce regressions since the last update that went out.
In situations like this I see us having several choices (in order of preference)
1. We branch from the older update in CVS and add just the security fix, and get that out.
2. We revert all the wireless changes back to the previous update.
3. We ship anyway, with the known wireless regressions.
#3 is of course, guaranteed not to win us friends with the wireless users.
We should get something out asap though, because it's only a matter of time before someone leaks an exploit.
Dave
On Sun, 2008-07-20 at 14:49 -0400, Dave Jones wrote:
We branch from the older update in CVS and add just the security fix, and get that out.
We revert all the wireless changes back to the previous update.
We ship anyway, with the known wireless regressions.
#3 is of course, guaranteed not to win us friends with the wireless users.
As a professional security guy, long-time Red Hat/Fedora user, and sometimes wireless sufferer, I'd lean towards option 1. From what I understand, the wireless updates would enable the RTL8187 USB Wireless devices that I have, which would be great, but waiting another week or two for them isn't a big deal. I've had my share of wireless fluctuation (iwl4965 on x86_64) over the past while and -86 seems to be running pretty stable.
kernel@lists.fedoraproject.org