diff options
author | Nico Golde <nion@debian.org> | 2007-10-11 14:38:28 +0000 |
---|---|---|
committer | Nico Golde <nion@debian.org> | 2007-10-11 14:38:28 +0000 |
commit | 4bd91b1e3d46a5920bdd72a4b456f53d70560f40 (patch) | |
tree | 3a7e900c037ae107a0178b55921fb8fd85aa2703 /doc | |
parent | d32186812afe450b8a82425c9a26130614c44f3f (diff) |
added note about embedded code copies and helping website
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@6907 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'doc')
-rw-r--r-- | doc/bits_2007_10_x | 18 |
1 files changed, 16 insertions, 2 deletions
diff --git a/doc/bits_2007_10_x b/doc/bits_2007_10_x index 991e78b1fc..592f7bae1e 100644 --- a/doc/bits_2007_10_x +++ b/doc/bits_2007_10_x @@ -28,7 +28,7 @@ Because of the fact that most of the work that we do to move along security fixes ends up in the packages automatically migrating from unstable to testing, this results in very little visibility of the work that our team does. We felt that a a good way to fix this was by -changing our security announcements. +changing our security announcements. Previously we were following the method that Stable security updates use by creating DTSA (Debian Testing Security Advisories) only for @@ -106,6 +106,17 @@ the tracker website[4]. +Embedded code copies +-------------------- + +There are a number of packages including source code from external +libraries like for example poppler is included in xpdf, kpdf and others. +To ensure that we don't miss any vulnerabilities in packages that do so +we maintain a list[5] of embedded code copies in Debian. +Please contact us for any missing items you know about. + + + Some statistics --------------- @@ -124,7 +135,8 @@ members of the Testing Security Team. If you are interested in joining the team, we always need more people, and its not very hard to contribute in very small ways that have large -impacts! Contact us if you are interested. +impacts! Contact us if you are interested. You may want to also look at +out helping page[6]. So far so good. We hope to keep you updated on testing security issues more regularly. @@ -138,3 +150,5 @@ Testing Security team [2]: http://security-tracker.debian.net/tracker/status/release/unstable [3]: http://secure-testing-master.debian.net/uploading.html [4]: http://security-tracker.debian.net/tracker/status/release/testing +[5]: http://svn.debian.org/wsvn/secure-testing/data/embedded-code-copies?op=file&rev=0&sc=0 +[6]: http://secure-testing-master.debian.net/helping.html |