[Pkg-mpd-maintainers] libmpdclient/ncmpc in debian (was "MPD 0.21 in buster")
kaliko
kaliko at azylum.org
Wed Nov 14 15:24:20 GMT 2018
Hi Florian, Max, Sebastian
On 14/11/2018 09:21, Max Kellermann wrote:
> On 2018/11/13 23:19, Florian Schlichting <fsfs at debian.org> wrote:
>>> Is there any plan to ship MPD 0.21 in buster?
>>>
>>> […]
>
> But it could be worse, just look at the ncmpc package, which appears
> completely unmaintained and even suffers from a CVE (of course, that
> bug was already fixed upstream when it was reported in the Debian bug
> tracker): https://security-tracker.debian.org/tracker/CVE-2018-9240
Regarding ncmpc and libmpdclient (same maintainer, CCed), I'm
maintaining packages for my own use and I tried to contact Sebastian
twice offering help but got no answer so far.
It would be nice to co-maintained these packages within "mpd
maintainers" along with him and get updated version in time for buster.
But I don't know what to do now since Sebastian seems MIA.
Cheers
k
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-mpd-maintainers/attachments/20181114/06c080b2/attachment.sig>
More information about the Pkg-mpd-maintainers
mailing list