[pkg-php-pear] Symfony security updates (Was: unblock: symfony/2.3.21+dfsg-4)
Daniel Beyer
dabe at deb.ymc.ch
Thu Apr 2 07:13:15 UTC 2015
Hi David,
On Thu, 2015-04-02 at 01:20 -0400, "David Prévot" wrote:
> Hi Daniel,
>
> > Please unblock package symfony
> >
> > It cherry-picks to security fixes from upstre[a]m:
>
> IIRC, you were in touch with upstream to get in advance information about
> security fixes (so we may prepare security backports in order get them in
> stable in sync with upstream). What is the status?
>
I wasn't in contact with upstream about this, yet. I'll catch up on this
right now.
> I was lucky to notice this one quickly after the release, but would prefer
> if we have more time to prepare it next time (since the 2.3 branch
> receives a lot more than security fixes, simply cherry-picking a targeted
> commit may not be enough in the not so distant future).
>
I at least got an automated notification yesterday regarding the
security release once it was out. But you're right: We definitely need
time to prepare in future. I'll take care on this and, as mentioned
above, get in touch with upstream. I keep you informed using this
thread.
Greetings
Daniel
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/pkg-php-pear/attachments/20150402/f9fa71ea/attachment.sig>
More information about the pkg-php-pear
mailing list