Main Inclusion Report for git-core

Requirements

1. Availability: http://archive.ubuntu.com/ubuntu/pool/universe/g/git-core, available for all supported architectures

2. Rationale: Revision control system for our kernel.

3. Security:

   • One yet unfixed vulnerability (CVE-2006-0477)
     • Addressed with 1.1.3-1ubuntu1 upload.
   • No binaries running as root or suid/sgid.
   • Source code review: (not done)

4. Quality assurance:

   • Package works out of the box without configuration.
   • No showstopper Debian bugs, the single open one might not affect us.
   • Good maintenance in Debian.
   • Active upstream.
     • Suggested to pull the latest Upstream Version.

5. Standards compliance:

   • Meets the FHS, Debian Policy

6. Packaging
   • Pretty ugly 'close-to-the-metal' packaging, but manageable.

7. Dependencies:

   • All in main.

Reviewers

MartinPitt: defered until security issue is fixed. FabioMassimoDiNitto: addressed security (1.1.3-1ubuntu1), would be nice new upstream version. Approved.