RFC: Proposal for a more agile "Fedora.next" (draft of my Flock talk)

[Lars Seipel]

On Fri, Jul 26, 2013 at 03:30:19PM -0400, Subhendu Ghosh wrote:
> The app provider should fix their version of libxml

The problem is: they don't. Walk up to some random Windows machine and
look how many vulnerable copies of zlib (or some other popular library)
you can find. Aside from maybe Google and Mozilla almost no one gets
this right.

And security issues is just one problem of the bundled library
approach...