[Secure-testing-team] [Secure-testing-commits] r12708 - data/CVE

[Moritz Muehlenhoff]

> oh, and wouldn't a "complete" fix for an embedded code copy involve a
> patch that strips the embedded code from the debian source package?
> 
> maybe this isn't the current state of play, but we should probably push
> for this.

Absolutely not, this is a very intrusive packaging step and only needed
when dealing with non-distributable content.

Cheers,
        Moritz