On 08-02-2011 18:46:32 +0100, Andreas K. Huettel wrote: > > Other than monitoring bugzilla, how does a Gentoo user even know that they > > have a package pending a security update? It seems like glsa's lag > > stabilization by a considerable timeframe. > > Yep. GLSA is something that seems to happen roughly one year after no > affected package is in tree anymore.
Well, it's not too bad lately: http://archives.gentoo.org/gentoo-announce/ -- Fabian Groffen Gentoo on a different level
