Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: Review Request: pulseaudio: Improved Linux sound server https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195221 ------- Additional Comments From toshio@xxxxxxxxxxxxxxx 2006-07-21 20:17 EST ------- Static libs are security hole. If I link my program against the static versions of a library and a vulnerability is later fixed in the library I will still be carrying around vulnerable code until I recompile against the newer version. With dynamic libs, only the library packager needs to be on the ball about finding security holes and making updates. The consumers of the library get the hole closed after they update the library. Versioning: Bear with me. I'm trying to imagine if there's any reason that versioning could be useful so we know we're not introducing broken behaviour. Since arts and esd both do it they either have thought of some corner case where it's useful or they're both broken. The latter is very likely (they're broken in many other ways) but we want to make sure we actually are smarter than our predecessors rather than falling into a problem that they avoided. -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact. _______________________________________________ Fedora-package-review mailing list Fedora-package-review@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-package-review