Hi, Seems to me this is a regression from the last security upgrade. Shouldn't we just publish a new version to -security and be done with it? Seems to me volatile is not sufficient, as it's not necessarily followed by everybody that got hit by this (critical) bug.
I have seen numerous such uploads, usually accompanied by a fully-fledged security advisory... (Even though for some reason there was no DSA with the git-core upload for some reason I don't quite understand...) What am I missing here? -- Antoine Beaupré Réseau Koumbit Networks +1.514.387.6262
signature.asc
Description: Digital signature
