Differences between revisions 19 and 20
Revision 19 as of 2012-11-18 00:58:32
Size: 513
Editor: PaulWise
Comment: add some words about forks
Revision 20 as of 2013-09-29 13:58:17
Size: 1376
Editor: PaulWise
Comment: update the page with more places/ways to find code copies
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
Debian Policy 4.13 states that Debian packages should not use convenience copies. [[http://www.debian.org/doc/debian-policy/ch-source.html#s-embeddedfiles|Debian Policy 4.13]] states that Debian packages should not use convenience copies.
Line 7: Line 7:
This list also contains information about code forks so that the security team can check if all forks contain the same vulnerabilities. This list also contains information about code forks so that the security team can check if all forks contain the same vulnerabilities. Send suggestions or additions to secure-testing-team@lists.alioth.debian.org.
Line 9: Line 9:
Send suggestions or additions to Lintian detects embedding of [[http://lintian.debian.org/tags/embedded-feedparser-library.html|feedparser]], common [[http://lintian.debian.org/tags/embedded-javascript-library.html|JavaScript]]/[[http://lintian.debian.org/tags/embedded-library.html|C/C++]]/[[http://lintian.debian.org/tags/embedded-pear-module.html|PEAR]]/[[http://lintian.debian.org/tags/embedded-php-library.html|PHP]] libraries and PostScript fragments ([[http://lintian.debian.org/tags/license-problem-font-adobe-copyrighted-fragment.html|1]] [[http://lintian.debian.org/tags/license-problem-font-adobe-copyrighted-fragment-no-credit.html|2]]).
Line 11: Line 11:
mailto:secure-testing-team@lists.alioth.debian.org If you have a particular piece of code with some interesting aspect (security issue etc) you can likely find other copies using the [[DebianCodeSearch|Debian code search site]].

Debian Policy 4.13 states that Debian packages should not use convenience copies.

The list of packages embedding code from other projects is maintained in the secure-testing svn repository:

http://anonscm.debian.org/viewvc/secure-testing/data/embedded-code-copies?view=markup

This list also contains information about code forks so that the security team can check if all forks contain the same vulnerabilities. Send suggestions or additions to secure-testing-team@lists.alioth.debian.org.

Lintian detects embedding of feedparser, common JavaScript/C/C++/PEAR/PHP libraries and ?PostScript fragments (1 2).

If you have a particular piece of code with some interesting aspect (security issue etc) you can likely find other copies using the Debian code search site.