GNU bug report logs - #74335
[PATCH 0/4] [security] Remove allegro-4.

Previous Next

Package: guix-patches;

Reported by: Nicolas Graves <ngraves <at> ngraves.fr>

Date: Wed, 13 Nov 2024 08:51:02 UTC

Severity: normal

Tags: patch

Done: Andreas Enge <andreas <at> enge.fr>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: help-debbugs <at> gnu.org (GNU bug Tracking System)
To: Andreas Enge <andreas <at> enge.fr>
Cc: tracker <at> debbugs.gnu.org
Subject: bug#74335: closed ([PATCH 0/4] [security] Remove allegro-4.)
Date: Wed, 30 Apr 2025 13:30:02 +0000

[Message part 1 (text/plain, inline)]
Your message dated Wed, 30 Apr 2025 15:28:58 +0200
with message-id <aBIlmnCQAp4qqHrd <at> jurong>
and subject line Re: CVE and removal of allegro-4
has caused the debbugs.gnu.org bug report #74335,
regarding [PATCH 0/4] [security] Remove allegro-4.
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)


-- 
74335: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=74335
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems

[Message part 2 (message/rfc822, inline)]
From: Nicolas Graves <ngraves <at> ngraves.fr>
To: guix-patches <at> gnu.org
Cc: Nicolas Graves <ngraves <at> ngraves.fr>
Subject: [PATCH 0/4] [security] Remove allegro-4.
Date: Wed, 13 Nov 2024 09:47:41 +0100

This package has a CVE, and its development is not supported upstream
anymore.  

Nicolas Graves (4):
  gnu: libresprite: Update to 1.1.
  gnu: Remove aseprite.
  gnu: Remove dumb-allegro4.
  gnu: Remove allegro-4.

 gnu/packages/game-development.scm | 146 ++++++------------------------
 gnu/packages/music.scm            |  12 ---
 2 files changed, 27 insertions(+), 131 deletions(-)

-- 
2.46.0




[Message part 3 (message/rfc822, inline)]
From: Andreas Enge <andreas <at> enge.fr>
To: Steve George <steve <at> futurile.net>
Cc: 74335-done <at> debbugs.gnu.org, 74335-submitter <at> debbugs.gnu.org
Subject: Re: CVE and removal of allegro-4
Date: Wed, 30 Apr 2025 15:28:58 +0200

Hello!

I have not found a CVE number, but the arguments given by Nicolas are
convincing enough for the package removals. I have pushed.

Thanks!

Andreas
This bug report was last modified 101 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.