Magnus Holmgren wrote:
On onsdagen den 6 mars 2013, Neil McGovern wrote: So, unfortunately the release team removed Pike entirely from the next stable release of Debian, because I said that some of the bugs fixed by 7.8.700 were "rather serious". Can you help me elaborate on that? (pike-jira.lysator.liu.se seems rather down at the moment.) Certainly 7.8.352 is better than nothing at
Browsing through the commitlogs since Sep 22nd 2009 (=7.8.352) I don't see any obvious security leaks being fixed. So the question indeed is, what is considered "rather serious" ? I'd say having 7.8.352 ok, having 7.8.700 is better, but when 7.8.700 is not (yet) available, having 7.8.352 is good enough.
Which begs another question: why is 7.8.700 not being considered in the first place? I can only imagine that it is a drop-in replacement for 7.8.352 and therefore a nobrainer to update the package.