Task Todo List Drop freeimage due to lack of maintenance and security problems
Sept. 28, 2024 - Sven-Hendrik Haase
As pointed out here (https://gitlab.archlinux.org/archlinux/packaging/packages/freeimage/-/issues/1) freeimage is dead and full of security holes. Nix has started to remove it entirely (https://github.com/NixOS/nixpkgs/pull/280835) and we should probably follow it. It is unlikely to ever be maintained again and the security holes aren't getting any smaller.
Figure out whether your packages can be built without freeimage. If it's possible, just push the packages right back into repos without freeimage enabled. If it's impossible to build without freeimage, we'll have to coordinate with upstream on how to proceed.
Filter Todo List Packages
Arch | Repository | Name | Current Version | Staging Version | Maintainers | Status | Last Touched By |
---|---|---|---|---|---|---|---|
x86_64 | Extra | arrayfire | 3.9.0-9 | svenstaro, kgizdov | Complete | svenstaro | |
x86_64 | Extra | deepin-album | 6.0.4-10 | felixonmars | Incomplete | ||
x86_64 | Extra | deepin-image-editor | 1.0.45-1 | felixonmars | Incomplete | ||
x86_64 | Extra | dtk6gui | 1:6.0.19-1 | felixonmars | Incomplete | ||
x86_64 | Extra | dtkgui | 1:5.7.1-4 | felixonmars | Incomplete | ||
x86_64 | Extra | forge | 2:1.0.8-3 | svenstaro | Complete | svenstaro | |
x86_64 | Extra | freeimage | 3.18.0-23 | svenstaro | Incomplete | ||
x86_64 | Extra | imv | 4.5.0-4 | lfleischer, arodseth | Complete | lfleischer | |
x86_64 | Extra | ogre | 14.3.2-1 | 14.3.2-2 | svenstaro | Complete | svenstaro |
x86_64 | Extra | ogre-next | 3.0.0-1 | svenstaro | Complete | svenstaro | |
x86_64 | Extra | opencascade | 1:7.8.1-2 | Archange, grawlinson | Complete | svenstaro |