MainInclusionReportEmbryo

Differences between revisions 4 and 5
Revision 4 as of 2009-11-30 12:07:20
Size: 2294
Editor: 5ad153e0
Comment:
Revision 5 as of 2009-11-30 12:09:03
Size: 2290
Editor: 5ad153e0
Comment:
Deletions are marked like this. Additions are marked like this.
Line 19: Line 19:
  * [[http://bugs.debian.org/src:elementary|Debian bugs]]:   * [[http://bugs.debian.org/src:embryo|Debian bugs]]:

Main Inclusion Report for embryo

Requirements

  1. Availability: http://archive.ubuntu.com/ubuntu/pool/universe/e/embryo/; available for all supported architectures

  2. Rationale:

    • Build dependency of netbook-launcher-efl required by the Mobile/ARM team.
    • Lucid Blueprint

  3. Security:

    • CVE entries:

      • "The Url_init function in utils/url.c in Netembryo 0.0.4, when used by LScube Feng, allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a malformed URI containing a "/:" sequence, as demonstrated by a "DESCRIBE /: RTSP/1.0" request.
    • Secunia history: none

    • Ubuntu CVE's: none
    • No binaries running as root or suid/sgid, no daemons
    • No known source code review
  4. Quality assurance:

  5. UI standards:

    • No user visible strings
  6. Standards compliance:

  7. Dependencies:

    • All dependencies satisfied in main.
  8. Maintenance:

    • Minimal maintenance needed
    • Debian responsible for bugs
  9. Background information:

    • This package is a dependency of netbook-launcher-efl which is to be packaged by the mobile team as part of an effort to bring the netbook experience to non-3d accelerated architectures on ARM.

Reviewers

MIR bug: https://launchpad.net/bugs/490304

The author of this report should put their name here; reviewers will add comments etc. too

JamieBennett

MainInclusionReportEmbryo (last edited 2010-01-12 10:16:27 by e177169043)