Proposal to reduce anti-bundling requirements

Kevin Kofler kevin.kofler at
Fri Oct 9 00:01:25 UTC 2015

Matthew Miller wrote:
> Find all the bundled libraries in all of Fedora, even with minor
> variations in code and version. When there's a vulnerability,
> automatically generate patches, bump the RPMs, rebuild test builds, run
> them through automated testing (including a new test for whatever
> just-revealed CVE), and ping the maintainers.

That will NOT help for all the non-security bugs, nor will it solve any of 
the other problems with bundling.

        Kevin Kofler

More information about the devel mailing list