[Pkg-javascript-devel] V8 depends from outdated and unmaintained libv8 with security issues
Jérémy Lal
kapouer at melix.org
Fri Feb 8 13:57:13 GMT 2019
Le ven. 8 févr. 2019 à 13:53, Andreas Tille <andreas at an3as.eu> a écrit :
> On Fri, Feb 08, 2019 at 11:48:57AM +0100, Jérémy Lal wrote:
> > > That would be absolutely fantastic, yes. Also a symlink from
> > > libv8.so-> libnode.so woulde be handy, because libv8 doesn't use
> > > pkg-config anywhere else so most bindings just test for linking with
> > > -lv8.
> > >
> >
> > Ok then no pkgconfig and a symlink instead.
> > I suppose i need to ask a removal of libv8 from unstable (it's removed
> from
> > testing) to
> > be able to "take" libv8-dev. Or maybe declare a libv8-in-nodejs-dev
> package
> > ?
>
> Conflicts: libv8-dev (<= version)
> Replaces: libv8-dev
> Provides: libv8-dev
>
> > In any case i don't know if i should make a libv8-xx package (which would
> > basically be
> > symlinks to libnode).
> > Any advice is welcome...
>
> That should be fine.
>
nodejs 10.15.1~dfsg-3 in experimental provides libv8-dev,
please tell me if it works like a "normal" library devel package !
Jérémy
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-javascript-devel/attachments/20190208/002a53f2/attachment.html>
More information about the Pkg-javascript-devel
mailing list