Package: security.debian.org Severity: wishlist For those who care about Debian derivatives:
A derivative may be deployed as an overlay rather than a full archive.
Modifications from the derivative live together with originals from
Debian, but modifications must have a higher version.
Full archives use this approach to increase the version:
1-1 → 1-1foo1
This does not work with overlays because of binNMUs:
1-1+b1 > 1-1foo1
1-1+b1 > 1-1foo1+b1
A binNMU may be unnecessary in the derivative. Also, these versions are
disruptive:
1-1+b1foo1
1-1+b1foo1+b1
Thus, overlays should use this approach:
1-1 → 1-1.0foo1
However, security updates may use the same signalization ("+") as
binNMUs, so:
1-1+deb1u1 < 1-1.0foo1
Therefore, please use a higher version for security updates, such as:
1-1 → 1-1.0+deb1u1
smime.p7s
Description: S/MIME cryptographic signature
