20.01.2025 23:53, Michael Tokarev wrote:
20.01.2025 23:49, Heinrich Schuchardt wrote:
Hello Michael,
I can understand that a maintainer cares about keeping his package buildable
but system security is of even higher importance.
The xz package has demonstrated the security impact of including
On 1/20/25 21:29, Michael Tokarev wrote:
20.01.2025 23:22, Heinrich Schuchardt wrote:
Package: qemu-system-riscv
Version: 1:9.2.0+ds-5
Severity: nomal
The https://salsa.debian.org/qemu-team/qemu contains pre-built binaries.
Binaries should always be built from source.
What's the point in f
20.01.2025 23:49, Heinrich Schuchardt wrote:
Hello Michael,
I can understand that a maintainer cares about keeping his package buildable
but system security is of even higher importance.
The xz package has demonstrated the security impact of including binaries of
unchecked origin.
Why do we
3 matches
Mail list logo
