Secure testing team - Dec 2007 - restructuring embedded code copies

Hi,
I started restructuring the embedded code copies file 
because it has become very chaotic over the time and I think 
it can be well structured using a similar format as in the 
CVE list.

I converted the xpdf entry to the new format:
http://lists.alioth.debian.org/pipermail/secure-testing-commits/2007-December/008048.html

The format I used for now is:
<srcpkg> (<optional comment about srcpkg>)
        - <embedding srcpkg> <status> (<sort>; bug
#<number>)
        NOTE: optional comments about the linkage of the embedding srcpkg

status: version number fixing the embedded copy, <unfixed> or
<unknown> if the version number can not be determined
sort: static/dynamic

Improvements are welcome, what do you think about this format, what could be
better?

If no improvements come I will go ahead and convert the rest of the list to the
new format
if I find some spare time.

Kind regards
Nico

-- 
Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url :
http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20071222/13b7aaf7/attachment.pgp

Nico Golde wrote:
> I started restructuring the embedded code copies file 
> because it has become very chaotic over the time and I think 
> it can be well structured using a similar format as in the 
> CVE list.
> 
> I converted the xpdf entry to the new format:
>
http://lists.alioth.debian.org/pipermail/secure-testing-commits/2007-December/008048.html
> 
> The format I used for now is:
> <srcpkg> (<optional comment about srcpkg>)
>         - <embedding srcpkg> <status> (<sort>; bug
#<number>)
>         NOTE: optional comments about the linkage of the embedding srcpkg
> 
> status: version number fixing the embedded copy, <unfixed> or
<unknown> if the version number can not be determined
> sort: static/dynamic
> 
> Improvements are welcome, what do you think about this format, what could
be better?
The format should differentiate between <static> (linking statically
against a lib)
and <embed> (embedding a copy of the library into another source package).

Other than that it appears fine.

Cheers,
        Moritz

Hi Moritz,
* Moritz Muehlenhoff <jmm at inutil.org> [2007-12-27
19:01]:
> Nico Golde wrote:
> > I started restructuring the embedded code copies file 
> > because it has become very chaotic over the time and I think 
> > it can be well structured using a similar format as in the 
> > CVE list.
> > 
> > I converted the xpdf entry to the new format:
> >
http://lists.alioth.debian.org/pipermail/secure-testing-commits/2007-December/008048.html
> > 
> > The format I used for now is:
> > <srcpkg> (<optional comment about srcpkg>)
> >         - <embedding srcpkg> <status> (<sort>; bug
#<number>)
> >         NOTE: optional comments about the linkage of the embedding
srcpkg
> > 
> > status: version number fixing the embedded copy, <unfixed> or
<unknown> if the version number can not be determined
> > sort: static/dynamic
> > 
> > Improvements are welcome, what do you think about this format, what
could be better?
> 
> The format should differentiate between <static> (linking statically
against a lib)
> and <embed> (embedding a copy of the library into another source
package).
Good idea, I changed this now.
Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url :
http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20071230/ac830c69/attachment.pgp

Hi,
The job should be done now, please make use of the new 
format if you add or modify new items.

Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url :
http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20080106/af2eda67/attachment.pgp