From Fedora Project Wiki
Packages that embed code copies
This page attempts to maintain a list of packages that embed code from other projects. Fedora policy aims to link such packages using the system libraries. Embedding code is problematic because bug fixes can no longer be centrally applied. Security vulnerabilities often happen as a result because security sensitive embedded packages may be out of date and have outstanding issues.
The list of embedded code copies is automatically generated and many false positives and false negatives are known to exist. The automatically generated list must be manually verified before a code copy is accurately identified.
The format of the file follows the style of the embedded-code-copies list from Debian Linux.