Package: ftp.debian.org Severity: normal It's a shame having to do this for a package with an active maintainer, but I strongly feel like dtc should be removed from debian. My reasons for thinking this:
* It seems like anyone that spends any time looking at this package finds security bugs. * If you don't want to look specifically for security bugs, there are plenty of other RC bug s to be found. * This package depends on being able to modify configuration files of other packages. (see #637501 and the bugs referenced in that bug) I'm troubled by the responses that the many security bugs in these packages get from the maintainer who is also the upstream author. I'm worried that the maintainer/upstream author does not have an adequate respect for security related issues. stew -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
