[Python-modules-team] Bug#932960: python-django doesn't fix a CVE and drops Python 2 support at the same time
Chris Lamb
lamby at debian.org
Fri Jul 26 03:03:50 BST 2019
Hi Paul,
> it will take time before it does, as python-django can not migrate
> before reverse dependencies are fixed or removed. The latter isn't very
> nice for your reverse dependencies if you didn't give them proper
> heads-up. The former isn't nice for the python-django users of testing.
Mmm and I see that now. As in, please be assured that I didn't
override those feelings out of a lack of care or concern for the
reverse dependencies and their maintainers; it merely didn't really
occur to me, perhaps in a frenzy of post-Buster release motivation.
What do you suggest going forward regarding this CVE, at least?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` lamby at debian.org 🍥 chris-lamb.co.uk
`-
More information about the Python-modules-team
mailing list