[Mageia-dev] [RFE] Bundled copies of system libraries - call for participation

Pascal Terjan pterjan at gmail.com
Tue Feb 7 17:44:48 CET 2012


On Tue, Feb 7, 2012 at 16:41, Guillaume Rousse <guillomovitch at gmail.com> wrote:
> Le 07/02/2012 17:19, David Walser a écrit :
>
>> Another thing that would be helpful related to this would be to have an
>> install of rq in the Mageia infrastructure:
>> https://fedorahosted.org/rq/
>>
>> It can be used to see when some code is affected by a security
>> vulnerability if any other packages contain the same code.
>
> I guess you can use Sophie (http://sophie.zarb.org) for this kind of
> queries.

It has some more informations (symbols available in binaries, and
source file names in the source tarballs, to find bundled copies of
the vulnerable code)


More information about the Mageia-dev mailing list