Task Todo List Drop freeimage due to lack of maintenance and security problems

Sept. 28, 2024 - Sven-Hendrik Haase

As pointed out here (https://gitlab.archlinux.org/archlinux/packaging/packages/freeimage/-/issues/1) freeimage is dead and full of security holes. Nix has started to remove it entirely (https://github.com/NixOS/nixpkgs/pull/280835) and we should probably follow it. It is unlikely to ever be maintained again and the security holes aren't getting any smaller.

Figure out whether your packages can be built without freeimage. If it's possible, just push the packages right back into repos without freeimage enabled. If it's impossible to build without freeimage, we'll have to coordinate with upstream on how to proceed.

Link to lists of pkgbase values:

Filter Todo List Packages

Select filter criteria
11 packages displayed out of 11 total packages.
Arch Repository Name Current Version Staging Version Maintainers Status Last Touched By
x86_64 Extra arrayfire 3.9.0-9 svenstaro, kgizdov Complete svenstaro
x86_64 Extra deepin-album 6.0.4-10 felixonmars Incomplete
x86_64 Extra deepin-image-editor 1.0.45-1 felixonmars Incomplete
x86_64 Extra dtk6gui 1:6.0.19-1 felixonmars Incomplete
x86_64 Extra dtkgui 1:5.7.1-4 felixonmars Incomplete
x86_64 Extra forge 2:1.0.8-3 svenstaro Complete svenstaro
x86_64 Extra freeimage 3.18.0-23 svenstaro Incomplete
x86_64 Extra imv 4.5.0-4 lfleischer, arodseth Complete lfleischer
x86_64 Extra ogre 14.3.2-1 14.3.2-2 svenstaro Complete svenstaro
x86_64 Extra ogre-next 3.0.0-1 svenstaro Complete svenstaro
x86_64 Extra opencascade 1:7.8.1-2 Archange, grawlinson Complete svenstaro