[Pkg-blender-maintainers] skipping 2.40 and going directly to
2.41?
Florian Ernst
florian at uni-hd.de
Mon Jan 9 23:04:08 UTC 2006
On Mon, Jan 09, 2006 at 10:39:23PM +0100, Wouter van Heyst wrote:
> Supposedly 2.41 is out within a week, is it a good idea to wait for
> that, or should we first get 2.40 in for the fixes that have
> accumulated? Specifically thinking of overflows.
In the light of the recent vulnerabilities we should now get out an
update as soon as possible.
The current 2.40-1 upload is set to urgency "high", thus it will
be elegible for migration to Testing two days after the upload. If
there are no issues that render this release unfit for uploading I'd
very much prefer to roll out right now, leaving plenty of time until
next week. This way we could fix those security bugs that are also
present in Stable as well.
Do you know whether 2.41 will fix #332413: CAN-2005-3151:
Bufferoverflow in blenderplayer arg parsing?
Cheers,
Flo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-blender-maintainers/attachments/20060110/db668f24/attachment.pgp
More information about the Pkg-blender-maintainers
mailing list