[Bug 195221] Review Request: pulseaudio: Improved Linux sound server
bugzilla at redhat.com
bugzilla at redhat.com
Sat Jul 22 00:26:53 UTC 2006
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: Review Request: pulseaudio: Improved Linux sound server
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=195221
------- Additional Comments From toshio at tiki-lounge.com 2006-07-21 20:17 EST -------
Static libs are security hole. If I link my program against the static versions
of a library and a vulnerability is later fixed in the library I will still be
carrying around vulnerable code until I recompile against the newer version.
With dynamic libs, only the library packager needs to be on the ball about
finding security holes and making updates. The consumers of the library get the
hole closed after they update the library.
Versioning: Bear with me. I'm trying to imagine if there's any reason that
versioning could be useful so we know we're not introducing broken behaviour.
Since arts and esd both do it they either have thought of some corner case where
it's useful or they're both broken. The latter is very likely (they're broken
in many other ways) but we want to make sure we actually are smarter than our
predecessors rather than falling into a problem that they avoided.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug, or are watching the QA contact.
More information about the Fedora-package-review
mailing list