I have already mailed Ubuntu-security on this in the past and now added a review slot for them on the MPs to feel safe for the "load .so from other place". I think it is as safe as the normal apth in /usr/lib/... but they are the experts to decide.
Finally I have converted this (in the description) to also be an FFe and subscribed ubuntu-release to check and ack on it.
Related Merge Proposals: /code.launchpad .net/~paelzer/ ubuntu/ +source/ qemu/+git/ qemu/+merge/ 380467 /code.launchpad .net/~paelzer/ ubuntu/ +source/ libvirt/ +git/libvirt/ +merge/ 380469
- qemu: https:/
- libvirt: https:/
I have already mailed Ubuntu-security on this in the past and now added a review slot for them on the MPs to feel safe for the "load .so from other place". I think it is as safe as the normal apth in /usr/lib/... but they are the experts to decide.
Finally I have converted this (in the description) to also be an FFe and subscribed ubuntu-release to check and ack on it.