This is the most nuts Debian Security Advisory I've ever seen

cve storm debian kwalitee

Nobody

Page 1 of /1 𝐀 ⬇︎

From: grep | Posted: 2021-04-07 17:43:552021-04-07 17:43 | Filter

who even pays developers to work on Debian

➕

➷ 1 reply

From: MasterOfMagic | Posted: 2021-04-08 02:23:502021-04-08 02:23 | Filter

From: grep at 2021-04-07 17:43:55
who even pays developers to work on Debian

Depends. I am not paid now. I was a consultant at a previous position and part of what I did was help them integrate with the parts I work on - they got my expertise for the things on their side and Debian got good bug reports and fixes on their side.

There was a previous Debian Project Leader that put together funding to pay the release engineers to help accelerate a release and that caused a Debian Developer revolt, so the history of it is not great….

➕

Trying too hard

From: grep | Posted: 2021-04-10 23:43:302021-04-10 23:43 | Filter

Wait they revolted against getting paid

➕

From: MasterOfMagic | Posted: 2021-04-11 03:51:042021-04-11 03:51 | Filter

Only a few developers got paid - many of the rest were angry about that.

➕

Trying too hard

From: MasterOfMagic | Posted: 2021-04-12 14:56:032021-04-12 14:56 | Filter

LWN covered it at the time: https://lwn.net/Articles/201488/

➕

Trying too hard

From: MasterOfMagic | Posted: 2021-04-29 14:59:212021-04-29 14:59 | Filter

➕

Trying too hard

From: Tiko ⁂ | Posted: 2021-04-30 00:45:512021-04-30 00:45 | Filter

thanks google

➕

From: MasterOfMagic | Posted: 2021-04-30 15:10:012021-04-30 15:10 | Filter

I assume that’s why they make it auto-upgrade, and I’m sympathetic because they have to deal with malicious, attacker controlled network input, but so does Firefox and it seems to have fewer CVEs across the same amount of time.

➕

Trying too hard

~~Autoscroll~~

Forget

To reply to this thread, please join this community.

Pages: 1

1 person is reading this thread now.

← Thread List | ↑ Top 𝐀 ⬆︎