this post was submitted on 30 Mar 2024
1577 points (97.7% liked)

linuxmemes

20880 readers
9 users here now

I use Arch btw


Sister communities:

Community rules

  1. Follow the site-wide rules and code of conduct
  2. Be civil
  3. Post Linux-related content
  4. No recent reposts

Please report posts and comments that break these rules!

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 39 points 8 months ago* (last edited 8 months ago) (1 children)

Most softwares do not include detailed security fixes in the change log for people to check; and many of these security fixes are in dependencies, so it is unlikely to be documented by the software available to the end user.

So most of the time, the safest "oldest safe" version is just the latest version.

[–] [email protected] 2 points 8 months ago* (last edited 8 months ago) (1 children)

So only protects like Debian do security backports?

Edit: why the downvote? Is this not something upstream developers do? Security fixes on older releases?

[–] [email protected] 2 points 8 months ago

Backports for supported versions sure,.

That's why there is an incentive to limit support to latest and maybe one previous release, it saves on the backporting burden.