[oe] Getting patches committed
Holger Hans Peter Freyther
holger+oe at freyther.de
Fri Jan 22 07:53:13 UTC 2010
On Friday 22 January 2010 01:13:34 Stanislav Brabec wrote:
> Well, and OE probably has vulnerable software.
>
> For example CVE-2008-1372 was present in bzip2 for more than a year:
> Full disclosure date: 10/17/2008
> Fixed in OE: 01/10/2010
Yupp... that was something that bothered me at Openmoko. I tried to talk
Julian into writing a script to go through the debian security uploads and
compare that with versions we have in OE...
yet another topic to take care of.
z.
More information about the Openembedded-devel
mailing list