[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: [HEADSUP] Removing vulnerable packages
On 04/08/11 12:20, Thomas Klausner wrote:
Here's an update to my list of last week:
On Fri, Apr 01, 2011 at 11:47:30AM +0200, Thomas Klausner wrote:
The packages listed below were marked as vulnerable on January 1, 2010
and still marked as vulnerable on April 1, 2011, while having no version
number updates (except for PKGREVISION bumps) in the meantime.
Please speak up if you are currently using one of them.
If you speak up, please think about providing patches to fix the
security issues (though it's not a requirement).
I'll remove packages for which noone spoke up after the branch is cut,
but at the earliest two weeks from now.
This might also cause the removal of dependencies if the package
contains a library or is a dependency for another reason.
For these packages noone has spoken up:
Incorrectly on the list:
AFAIK, adobe-flash-plugin-10.0.0.525 is the only flash plugin available which
will work on NetBSD. Removing it is going to force many of us who use NetBSD
desktops to switch to Linux. My understanding is that newer versions of flash
require linux emulation to be brought up to date.
Main Index |
Thread Index |