On Fri, 27 Mar 2015 15:03:59 +0200
Alexander Bokovoy <abokovoy(a)redhat.com> wrote:
My primary worry is CVE handling. These delays are not helping in
getting security fixes delivered. I'm not fighting for dropping
certain type of content but rather for prioritization.
Right, as I noted at the end of that other long mail, there's
discussion about a 'urgent updates' repo for security updates.
The initial thought was that it would just contain 'urgent' level
stuff, not high or moderate, but it's not set in stone yet.
Also, do realize we have had cases where fixes to security issues were
rushed out and ended up being broken/not really having been tested
because everyone was rushing so much.
kevin