On 05/12/2011 09:37 PM, Wolfgang Rosenauer wrote:
The kernel is a problem indeed. It's an explanation but doesn't make it better in the end though. But then again the updates are usually released pretty fast. What delay would be acceptable to you?
as a first step it would be good to have an overview on the evergreen-page about what security problems need fixing like:
CVE-XYZ from 05.05.2011 - in progress CVE-XXY from 06.05.2011 - open CVE-XYY from 10.05.2011 - fixed
That would also make it easier for others to help.
About the acceptable delay - it depends on the type and severity of the problem and on the package affected - I can't give you a general number. In the end it will be compared to the other vendors, so it should not be much slower than them.
As you said - the kernel is a problem and that's what makes me uneasy with evergreen for 11.1 currently.
But again - I really appreciate your work and I've also noticed that some patches where out very fast!