Hi List! I made a short PERL script, for doing some statistics-analysis on all of the new and obsolete patches available via YOU. But there are several packages, where I can't find out, what is behind, and why I see sometimes seemingly outdated packages. One example xine-ui and xine-lib, where actually both of them were build from xine-lib-xxx.nosrc.rpm, but as the vulnerability was discovered, from TWO different versions: Buildtime: 2004-04-26 16:18:03 Package: xine-ui-0.99.rc3a-106.3.i586.rpm Source: (xine-lib-0.99.rc3a-106.3.nosrc.rpm) Buildtime: 2004-11-16 13:55:32 Package: xine-lib-0.99.rc3a-106.15.i586.rpm Source: (xine-lib-0.99.rc3a-106.15.nosrc.rpm) My question would be (even, that I realized, that there is nothing wrong!), that how is this possible, that after the second patch got available via YOU, the xine-ui-0.99.rc3a-106.15.i586.rpm was not build again from the updated source? Another, more theoretical question would be, that in case one decides to build e.g. the first package from the _newer_ source, would one get the same as the prior variant xine-ui, only with a tiny change exclusively in the version-numbers? (While checking the output of my program, in the case of some arts, dhcp, kdelibs3, subversion, and XFree86 packages the situation is very similar: few updated rpms coming from updated sources, but their 'sisters' got no update...) I'm not so familiar with deeper rpm-related themes, so I would be really hapy to get a correct explanation, more or less on the user-level:) Thanks a lot, Pelibali