[Bug 227669] audio/libsndfile: vulnerabilities < 1.0.29 still not fixed
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Mon Sep 3 01:45:15 UTC 2018
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=227669
rkoberman at gmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |rkoberman at gmail.com
--- Comment #3 from rkoberman at gmail.com ---
Ports are not normally removed due to vulnerabilities. I have had ports that I
needed that had vulnerabilities for literally years. Since you must literally
disable vulnerability checks to install it and see the report in periodic logs
nightly, it is up to the person responsible for the system to check on the
issue(s) and determine whether they are relevant to the us of the port in their
environment.
In the case of libsnd, it is used by quite few ports and removing it would
break a number of ports. Examples:
twolame-0.3.13_4
wavegain-1.2.8
libsamplerate-0.1.9
speech-dispatcher-0.8.6
vamp-plugin-sdk-2.6
jackit-0.125.0_4
pulseaudio-11.1_1
audacity-2.2.2_3
I can't really operate without libsnfile.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-multimedia
mailing list