Re: Grace period for 1.13 users to upgrade to 1.14? (was: svn commit: r1877222 - /subversion/site/publish/docs/release-notes/1.14.html)

From: Nathan Hartman <hartman.nathan_at_gmail.com>
Date: Fri, 1 May 2020 11:39:10 -0400

On Thu, Apr 30, 2020 at 12:47 PM Daniel Shahaf <d.s_at_daniel.shahaf.name>
wrote:

> danielsh_at_apache.org wrote on Thu, 30 Apr 2020 16:21 -0000:
>
I just copied the text we use for 1.9, but there's a distinction: users
> of 1.9 have had time to upgrade to 1.10 before 1.14.0 becomes GA,
> whereas users of 1.13 have not. So, should we promise some sort of
> grace period for users of 1.13.x — i.e., a period following the release
> of 1.14.0 during which we'll still fix security bugs in 1.13.0?

Before I can offer an opinion on that, I have to ask: If that scenario
actually occurs, where a security issue is discovered in a release line
very soon after it goes EOL, does the fix have to be an actual *release*
with all the process that implies, or can it just be a (signed) patch?

Nathan
Received on 2020-05-01 17:39:34 CEST

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]