[Git][security-tracker-team/security-tracker][master] unclaim hdf5. It seems we'd need an SONAME bump and difficulties with the packageing.

Tobias Frost (@tobi) tobi at debian.org
Sat May 20 10:17:37 BST 2023 


Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a982e752 by Tobias Frost at 2023-05-20T11:17:22+02:00
unclaim hdf5. It seems we'd need an SONAME bump and difficulties with the packageing.

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -54,7 +54,7 @@ golang-yaml.v2 (sgmoore)
   NOTE: 20230125: VCS: https://salsa.debian.org/lts-team/packages/golang-yaml.v2.git
   NOTE: 20230125: Special attention: limited support; requires rebuilding reverse build dependencies (though recent bullseye updates didn't).
 --
-hdf5 (tobi)
+hdf5
   NOTE: 20230318: Programming language: C.
   NOTE: 20230318: VCS: https://salsa.debian.org/lts-team/packages/hdf5.git
   NOTE: 20230318: Consider fixing all the no-dsa and postponed issues as well. (utkarsh)
@@ -62,6 +62,10 @@ hdf5 (tobi)
   NOTE: 20230318: sync w/ him. (utkarsh)
   NOTE: 20230506: tried to triage… seems to be that only sensible way forward would be to update to a newer version in the 1.10.x
   NOTE: 20230506: line. Still then, state of CVEs are unknown if they have been fixed. 1.10.11 is scheduled for September. (tobi)
+  NOTE: 20230520: Tried to backport 1.10.6 to buster, however, it seems that there is a (hidden) SONAME bump,
+  NOTE: 20230520: https://salsa.debian.org/debian/hdf5/-/commit/52b5fe589e68361ea840121d8f4a8eb9148bf3da
+  NOTE: 20230520: additionally couldn't convince the build system to build for buster, something with the autogenerated .install files,
+  NOTE: 20230520: so giving up on the package. (tobi)
 --
 libcap2 (Abhijith PA)
   NOTE: 20230517: Programming language: C.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a982e752da4b2c93d8a0f368b8c444996c85a561

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a982e752da4b2c93d8a0f368b8c444996c85a561
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230520/2590a9fa/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list