From mboxrd@z Thu Jan 1 00:00:00 1970 From: David Craven Subject: Re: kdesu security update needed Date: Sat, 1 Oct 2016 14:59:13 +0200 Message-ID: References: <20160929152353.GA6330@jasmine> <20160929204932.GA25044@jasmine> <87eg40i7nq.fsf@gnu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:41261) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1bqJsw-0006tz-Jw for guix-devel@gnu.org; Sat, 01 Oct 2016 08:59:23 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1bqJsq-0001Rf-Kz for guix-devel@gnu.org; Sat, 01 Oct 2016 08:59:21 -0400 Received: from mail-yb0-x22e.google.com ([2607:f8b0:4002:c09::22e]:36043) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1bqJsp-0001Qd-EA for guix-devel@gnu.org; Sat, 01 Oct 2016 08:59:16 -0400 Received: by mail-yb0-x22e.google.com with SMTP id z8so36811330ybh.3 for ; Sat, 01 Oct 2016 05:59:14 -0700 (PDT) In-Reply-To: <87eg40i7nq.fsf@gnu.org> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: =?UTF-8?Q?Ludovic_Court=C3=A8s?= Cc: guix-devel Thank you for the info @Leo and @Ludo, just noticed that it's mentioned in the manual. One question that wasn't answered yet in your description and the manual is how the linter detects when a package is patched. I assume it looks at the applied patch names see if they contain a CVE code?