On Friday 22 January 2010 01:13:34 Stanislav Brabec wrote:
> Well, and OE probably has vulnerable software.
>
> For example CVE-2008-1372 was present in bzip2 for more than a year:
> Full disclosure date: 10/17/2008
> Fixed in OE: 01/10/2010
Yupp... that was something that bothered me at Openmoko. I tried to talk
Julian into writing a script to go through the debian security uploads and
compare that with versions we have in OE...
yet another topic to take care of.
z.
_______________________________________________
Openembedded-devel mailing list
[email protected]
http://lists.linuxtogo.org/cgi-bin/mailman/listinfo/openembedded-devel
