Am 30.07.2013 11:35, schrieb Ian Malone: > This is the price you pay for having updated versions of libraries > with security fixes and functionality, and it's why Linux > distributions use open source (and one reason non OS software is > tricky), provided the library API hasn't changed you just rebuild > against the newer library. The original developer doesn't need to know > what version you're building against. Alternatively if there's a > vulnerability in an old zlib or libxml (not unheard of so far as I > know) there is a reason i mentoined libxml https://www.google.at/search?q=libxml2+CVE http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1969 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2877
Attachment:
signature.asc
Description: OpenPGP digital signature
-- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
