severity 395252 serious
thanks
> The testing security team tracks probably hundreds of possibly security
> relevant code copies in data/embedded-code-copies in their svn repo. As
> long as the security teams know about code copies, they can deal with
> updates due to them.
No, we have already way too much work and artifially introducing more is
not a option. For Sarge there was no clean solution, as ffmpeg provided
only a static libavcodec, but since this exists, there's no reason not
to use it.
> Getting rid of embedded code copies is a good thing
> to do, but it's not an RC bug.
>
> This may change to RC post-etch.
Now is the right time to fix it.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
