* K. Piche ([EMAIL PROTECTED]) wrote: > I am a developer. Although I could use the AUR bugtracker... > > Thanks, > k > > On Tue, 2005-10-04 at 17:06 +1000, James Rayner wrote: > > File this in the bug tracker, bugs.archllinux.org and the developers > > will notice it much more quickly > > On 10/4/05, K. Piche <[EMAIL PROTECTED]> wrote: > > > Hi all, > > > > > > There's a security vulnerability for helixplayer up to and including > > > version 1.0.5: > > > http://www.idefense.com/application/poi/display?id=311&type=vulnerabilities > > > > > > Upgrade to or build version 1.0.6. > > > > > > Kevin
This would probably be better on the tur-users ML. But on a similar note... This packages has been out of date for some time now... Is there a special rule when it comes to pkg-owner in the AUR that don't update? I persuaded dma147 once to take over a package and orphan it immediatly, because people whined on the IRC-channel. That way we got a more eager maintainer and a more up to date version. I don't know if that was "the right way"(tm) of doing things. Could somebody please clarify this for me? Sorry for hijacking the arch ML, but this is very related. TIA&BR, Benjamin P.S. TOFU sucks. :-P _______________________________________________ arch mailing list [email protected] http://www.archlinux.org/mailman/listinfo/arch
