A proposal for Fedora updates

Kevin Fenzi kevin at scrye.com
Fri Mar 27 13:18:59 UTC 2015

On Fri, 27 Mar 2015 15:03:59 +0200
Alexander Bokovoy <abokovoy at redhat.com> wrote:

> My primary worry is CVE handling. These delays are not helping in
> getting security fixes delivered. I'm not fighting for dropping
> certain type of content but rather for prioritization.

Right, as I noted at the end of that other long mail, there's
discussion about a 'urgent updates' repo for security updates.

The initial thought was that it would just contain 'urgent' level
stuff, not high or moderate, but it's not set in stone yet. 

Also, do realize we have had cases where fixes to security issues were
rushed out and ended up being broken/not really having been tested
because everyone was rushing so much. 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20150327/a6ed0e61/attachment.sig>

More information about the devel mailing list