Le February 1, 2008 04:10:47 am Matthias Klose, vous avez écrit : > Philippe Cloutier writes: > > Le January 31, 2008 08:39:52 pm Tom Marble, vous avez écrit : > > [...] > > > > > Please consider the uploading of 1.5.0_14 as previously mentioned > > > as a "timely reaction from the Java maintenance team". > > > Please make this fix available to etch users, not just sid users > > > (a timely reaction from the Debian Release Team :-) ). > > > > As I was trying to say, it's the (Debian) Sun Java maintainance team's > > responsability to upload a fixed package for stable. > > > > If the maintainance team doesn't react timely and nobody else proposes a > > fixed package to the security team, then it will be the release team's > > responsability to remove the RC-buggy package from stable. As the bug was > > just reported, it's still too early for intervention from the release > > team. > > The security already did give the statement that they don't care about > security updates for non-free. Where? Either you misunderstood or someone wrote too fast, because as the Debian security FAQ reads:
If it is possible to fix the problem, and the package maintainer or someone else provides correct updated packages, then the security team will generally process them and release an advisory. > So it doesn't seem too much to *ask* > the release team if they consider such an update at all. Maybe, but that's not what Tom did.
