Comment 23 for bug 227464

I'm sorry for whining to the people who are subscribed to and care about this bug, but over 2 months since the release of a package with 3 claimed remotely exploitable code injection bugs makes me VERY hesitant to ever recommend Ubuntu for server use ever again.
By this time even the slow moving redhat has updated and Ubuntu doesn't even have a package in -proposed.
It seems all the hard work was completed over a month ago, and sits in Tormod Volden PPA, with no action since.
As far as I can tell, everything else is political will.
If there is no more forward, I will have to start explaining to the world how broken Ubuntu's security updating strategy is.
I would prefer to put my effort in something more useful then being the squeaky wheel, and will take all suggestions of how I can help.
I prefer action over complaining any day ;-)