Hi, Richard Stallman <[email protected]> skribis:
> Perhaps you were asking about previously installed packages linked > against a vulnerable libc, for example? Again, those packages remain > vulnerable, until you upgrade to the new version, that links against the > fixed libc. > > Why can't the already-installed binaries run a new shared libc version? > Are you using static linking? No. Basically, each package is installed in its own directory, pretty much à la GNU Stow. However, the directory name contains the hash of all the inputs used to build that package (source code, compiler, libraries, build scripts, etc.) Thus, when an input changes, the new package ends up being installed in a different directory. Thanks, Ludo’.
