There has been a fair amount of talk regarding how to handle security updates in Fedora Extras. Current handling of these updates is up to the package maintainer. The fedora-security-list has been created for just such discussions, with the hope of the community to devise a solution to deal with Extras security issues.
The scope of this list is not limited to Extras security, but rather a list with a focus on security issues in Fedora along with how the various security groups can work together.
I have no idea what this list or the way we handle security issues will evolve into. Rather than try to force something onto the community, I'd rather see the people interested in such things work together to come up with a solution that people are willing to work on.
You can subscribe to the list here:
https://www.redhat.com/mailman/listinfo/fedora-security-list
