On Fri, Jul 26, 2013 at 03:30:19PM -0400, Subhendu Ghosh wrote: > The app provider should fix their version of libxml
The problem is: they don't. Walk up to some random Windows machine and look how many vulnerable copies of zlib (or some other popular library) you can find. Aside from maybe Google and Mozilla almost no one gets this right. And security issues is just one problem of the bundled library approach... -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
