MainInclusionWebkit
Main Inclusion Report for webkit
Requirements
Availability: available for officially supported architectures.
- Rationale:
- provides alternative web browser engine to xulrunner.
- enables build of alternative packages in main which can use webkit (e.g. epiphany).
- Security:
- These CVEs have been filed in the past:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2307 (mentioned in Ubuntu CVE tracker too, medium risk)
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1026 (mentioned in Ubuntu CVE tracker too, medium risk)
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1025 (mentioned in Ubuntu CVE tracker too, low risk)
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0298 (mentioned in Ubuntu CVE tracker too, low risk)
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4701 (?)
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2408 (?)
17 entries in Secunia.
- No binaries running as root or suid/sgid.
- Does not open any port. (?)
- These CVEs have been filed in the past:
- Quality Assurance:
- Package works out of the box without configuration.
- Package does not ask any debconf questions.
Good maintenance in Debian.
No open showstopper Debian bugs.
Active upstream.
1 critical and 5 major bugs reported upstream.
- Standards compliance:
Meets the FHS, Debian Policy.
Meets Debian library packaging guide standards.
- Standard debhelper packaging.
- Dependencies: all in main.
Reviewers
- authors: asac, Jazzva
https://launchpad.net/bugs/250738
- signed-off: asac (co-author)
MainInclusionWebkit (last edited 2008-08-06 16:16:46 by localhost)