Thanks to those who responded. I will go ahead and start working with
the security team on declaring gpac EOL.
Regards,
-Roberto
On Thu, Apr 14, 2022 at 11:11:52AM -0400, Roberto C. Sánchez wrote:
> Hello everyone,
>
> I've been working on gpac vulnerabilities. The situation has reached a
>
Hi Roberto,
I agree with Utkarsh basically. Fixing over 100 (or even over 20)
issues through patches drastically increases chances to make a
mistake. Backporting newer version also has downsides.
I would propose to declare it as EOL.
Best regards
Anton
Am Do., 14. Apr. 2022 um 17:22 Uhr
Hello,
[looping in the Security team as this involves buster and in general,
their opinion would be very helpful!]
On Thu, Apr 14, 2022 at 8:52 PM Roberto C. Sánchez wrote:
> Open security issues:
>
> bookworm: 4
> bullseye: 100
> buster: 124
> stretch: 126
Holy smokes! CRAZY!
Let me take a
Hello everyone,
I've been working on gpac vulnerabilities. The situation has reached a
point where it seemed wise to seek some input from other folks in the
LTS community before continuing. With this message I am specifically
seeking to start a discussion about the best way forward.
First,
