[Secure-testing-commits] r6907 - doc

nion at alioth.debian.org nion at alioth.debian.org
Thu Oct 11 14:38:28 UTC 2007


Author: nion
Date: 2007-10-11 14:38:28 +0000 (Thu, 11 Oct 2007)
New Revision: 6907

Modified:
   doc/bits_2007_10_x
Log:
added note about embedded code copies and helping website

Modified: doc/bits_2007_10_x
===================================================================
--- doc/bits_2007_10_x	2007-10-11 06:34:59 UTC (rev 6906)
+++ doc/bits_2007_10_x	2007-10-11 14:38:28 UTC (rev 6907)
@@ -28,7 +28,7 @@
 security fixes ends up in the packages automatically migrating from
 unstable to testing, this results in very little visibility of the
 work that our team does. We felt that a a good way to fix this was by
-changing our security announcements. 
+changing our security announcements.
 
 Previously we were following the method that Stable security updates
 use by creating DTSA (Debian Testing Security Advisories) only for
@@ -106,6 +106,17 @@
 
 
 
+Embedded code copies
+--------------------
+
+There are a number of packages including source code from external
+libraries like for example poppler is included in xpdf, kpdf and others.
+To ensure that we don't miss any vulnerabilities in packages that do so
+we maintain a list[5] of embedded code copies in Debian.
+Please contact us for any missing items you know about.
+
+
+
 Some statistics
 ---------------
 
@@ -124,7 +135,8 @@
 
 If you are interested in joining the team, we always need more people,
 and its not very hard to contribute in very small ways that have large
-impacts! Contact us if you are interested.
+impacts! Contact us if you are interested. You may want to also look at
+out helping page[6].
 
 So far so good. We hope to keep you updated on testing security issues
 more regularly.
@@ -138,3 +150,5 @@
 [2]: http://security-tracker.debian.net/tracker/status/release/unstable
 [3]: http://secure-testing-master.debian.net/uploading.html
 [4]: http://security-tracker.debian.net/tracker/status/release/testing
+[5]: http://svn.debian.org/wsvn/secure-testing/data/embedded-code-copies?op=file&rev=0&sc=0
+[6]: http://secure-testing-master.debian.net/helping.html




More information about the Secure-testing-commits mailing list