Hi, Am 29.08.21 um 10:27 schrieb jim_p: > Although I agree with what you say about security, please consider uploading > v91 to experimental, like you already do for firefox-esr. For anyone that is > on > 91b5, the upgrade to v91 as stable will come in November, when v78.x will be > eol.
have you read really the past communication that was happen in this bug report? It's already explained what is/need to happen and why. Version 91.0.3 is already uploaded to the archive in the between time. As needed for 91.0 this version requires a review from the FTP team. https://ftp-master.debian.org/new/thunderbird_1:91.0.2-1.html > By then, v91 will probably be on 91.3.x and debian's package of 91b5 will > probaly have a few dozens of security holes. No, if you use experimental you are on your own, this isn't a suite intended for daily use, and especially not if personal security is affected. https://wiki.debian.org/DebianExperimental We do support the current ESR version 78.x of Thunderbird long as possible. This will happen at least for the planned versions 78.13 and also 78.14. > Downgrading to 78.x so as not to miss those security updates is not an option > because it will definitely cause issues with a profile made/used in a newer > version. Not even mozilla supports downgrading for that reason! > And no, downgrading to 78.x, deleting profiles etc from 91.x and starting > fresh > is not an option, at least for me. As pointed out, then you are on your own if you haven't a backup of the old profile. The only supported way for packages is done by starting uploading new packages to unstable that migrate to all other suites. For supporting the stable releases there is a process established by the security team. -- Regards Carsten
