darkplaces in Debian out-dated by a good three years and Nexuiz Classic abandoned since 2010
Markus Koschany
apo at gambaru.de
Mon Aug 14 23:16:51 UTC 2017
Hello,
please note that pkg-games-devel is just a bug mailing list. If you want
to discuss general issues about the state of games in Debian then
debian-devel-games at lists.debian.org would be your list of choice.
Am 14.08.2017 um 21:12 schrieb Frederique:
> Dear Debian Games mailing list,
>
> I am going to try to keep it short and simple.
>
> darkplaces: this package has not received updates in Debian while the
> official SVN is still receiving commits to this day (
> svn://svn.icculus.org/twilight/trunk/darkplaces ).
darkplaces [1] still receives regular updates and is actively maintained
by Simon McVittie. Are we missing something?
> Nexuiz Classic: project has been abandoned in favour of their
> commercial proprietary release. This since 2010. A majority of the
> Nexuiz community has moved over to create a fork called Xonotic ( http:
> //www.xonotic.org/ ) which last received an update just a few months
> ago.
That's right and we are aware of the situation. We also would like to
provide a Xonotic package but nobody has shown any interest in doing the
work.
Are you willing to package Xonotic?
I have done some preliminary packaging almost three years ago [2] [3].
We just need someone who is really interested in maintaining Xonotic.
> Please update darkplaces and replace Nexuiz with Xonotic. There is also
> a possibility of Nexuiz being vulnerable to an exploit allowing servers
> to remotely execute code on clients similar to the exploits Valve
> recently resolved in their Quake based legacy games:
>
> http://steamcommunity.com/games/70/announcements/detail/143931405382043
> 1619
>
> And just to express concern in regards the importance of keeping games
> updated, here is a recent exploit Valve fixed in their Source engine
> that allowed remote code execution simply by killing a player:
>
> https://www.theverge.com/2017/7/20/16003722/valve-one-up-security-explo
> it-hackers-ragdoll-source-sdk-vunerability
We are currently not aware of any security issues. You can just search
the security tracker for more information:
https://security-tracker.debian.org/tracker/
Steam is nonfree software which cannot be supported by Debian by the way.
Regards,
Markus
[1] https://tracker.debian.org/pkg/darkplaces
[2] https://anonscm.debian.org/cgit/pkg-games/xonotic.git
[3] https://anonscm.debian.org/cgit/pkg-games/xonotic-data.git
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 963 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-games-devel/attachments/20170815/a80e0246/attachment.sig>
More information about the Pkg-games-devel
mailing list