Avatar for Username

Tìm kiếm hỗ trợ

Tránh các lừa đảo về hỗ trợ. Chúng tôi sẽ không bao giờ yêu cầu bạn gọi hoặc nhắn tin đến số điện thoại hoặc chia sẻ thông tin cá nhân. Vui lòng báo cáo hoạt động đáng ngờ bằng cách sử dụng tùy chọn "Báo cáo lạm dụng".

Tìm hiểu thêm

Chủ đề này đã được lưu trữ. Vui lòng hỏi một câu hỏi mới nếu bạn cần giúp đỡ.

Delay in posting link to latest binary

  • 2 trả lời
  • 0 gặp vấn đề này
  • 1 lượt xem
  • Trả lời mới nhất được viết bởi evit

evit
evit
more options

I've notice that the Mozilla Foundation Security Advisory page is very timely on release details of security fixed but the Thunderbird Release Notes and main download link are not.

When security patches are detailed here: https://www.mozilla.org/en-US/security/advisories/

Sometimes it is delayed DAYS before the updated binary is available for download on the main Thunderbird page https://www.thunderbird.net/en-US/ or shown in the changelog at https://www.thunderbird.net/en-US/thunderbird/releases/

What is that? Isn't that kind of a big issue?

I've notice that the Mozilla Foundation Security Advisory page is very timely on release details of security fixed but the Thunderbird Release Notes and main download link are not. When security patches are detailed here: https://www.mozilla.org/en-US/security/advisories/ Sometimes it is delayed DAYS before the updated binary is available for download on the main Thunderbird page https://www.thunderbird.net/en-US/ or shown in the changelog at https://www.thunderbird.net/en-US/thunderbird/releases/ What is that? Isn't that kind of a big issue?

Tất cả các câu trả lời (2)

david
david
  • Top 10 Contributor
more options

Your question should go to developers for a detailed response, not here. Yet, from my own development experience, it takes time to confirm a fix to the time that all documentation is updated and the module is ready for deployment. There is a quality assurance effort in that time gap. I am not clear on what your expectations are.

evit
evit Người tạo câu hỏi
more options

Got it. Thanks for the deets.

My expectations are that if they have a security advisory that states the new version fixes a vulnerability that I can find the updated binary. This is the case in nearly every open source project. I will take my question to them directly.