subject:"Bug#719966\: pu\: package openvrml\/0.18.9\-5\+deb7u1"

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-10-05 Thread Adam D. Barratt

Control: tags -1 + pending

On Sat, 2013-10-05 at 14:02 +0200, Ansgar Burchardt wrote:
> "Adam D. Barratt"  writes:
> > On Fri, 2013-10-04 at 16:42 +0100, Adam D. Barratt wrote:
> >> It looks like we'll be accepting the newer iceweasel packages from 
> >> security for 7.2, so under the circumstances I'd be prepared to accept 
> >> the direct fix so long as the remaining functionality of the package 
> >> gets some testing before the point release (assuming the consensus is to 
> >> fix rather than RM the package). If anyone has some insight in to how 
> >> useful the package is once the Javascript support has been removed, that 
> >> would be appreciated.
> >
> > Just in case there was any confusion, the above was "please go ahead
> > with the upload for stable" (unless someone yells at me in the meantime
> > or you decide to convert this to an RM request :P).
> 
> Okay, wasn't sure about that. The package is now uploaded.

and flagged for acceptance.

> For basic testing I tried using the "lookat" utility with two examples
> from [1] and they were displayed.
> 
>   [1] 

Thanks.

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/1380975355.9262.56.ca...@jacala.jungle.funky-badger.org

Processed: Re: Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-10-05 Thread Debian Bug Tracking System

Processing control commands:

> tags -1 + pending
Bug #719966 [release.debian.org] pu: package openvrml/0.18.9-5+deb7u1
Added tag(s) pending.

-- 
719966: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719966
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems


--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/handler.s.b719966.13809753651077.transcr...@bugs.debian.org

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-10-05 Thread Ansgar Burchardt

"Adam D. Barratt"  writes:
> On Fri, 2013-10-04 at 16:42 +0100, Adam D. Barratt wrote:
>> It looks like we'll be accepting the newer iceweasel packages from 
>> security for 7.2, so under the circumstances I'd be prepared to accept 
>> the direct fix so long as the remaining functionality of the package 
>> gets some testing before the point release (assuming the consensus is to 
>> fix rather than RM the package). If anyone has some insight in to how 
>> useful the package is once the Javascript support has been removed, that 
>> would be appreciated.
>
> Just in case there was any confusion, the above was "please go ahead
> with the upload for stable" (unless someone yells at me in the meantime
> or you decide to convert this to an RM request :P).

Okay, wasn't sure about that. The package is now uploaded. For basic
testing I tried using the "lookat" utility with two examples from [1]
and they were displayed.

  [1] 

Ansgar


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/87mwmo7wo2@deep-thought.43-1.org

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-10-05 Thread Adam D. Barratt

On Fri, 2013-10-04 at 16:42 +0100, Adam D. Barratt wrote:
> It looks like we'll be accepting the newer iceweasel packages from 
> security for 7.2, so under the circumstances I'd be prepared to accept 
> the direct fix so long as the remaining functionality of the package 
> gets some testing before the point release (assuming the consensus is to 
> fix rather than RM the package). If anyone has some insight in to how 
> useful the package is once the Javascript support has been removed, that 
> would be appreciated.

Just in case there was any confusion, the above was "please go ahead
with the upload for stable" (unless someone yells at me in the meantime
or you decide to convert this to an RM request :P).

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/1380965847.9262.29.ca...@jacala.jungle.funky-badger.org

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-10-04 Thread Adam D. Barratt


[openvrml maintainers added to CC]

On 2013-09-23 4:38, Cyril Brulebois wrote:

Control: tag -1 moreinfo wheezy

Ansgar Burchardt  (2013-08-17):

I prepared an update for openvrml that disable JavaScript support as
the package fails to build with newer versions of libmozjs-dev. As 
it

might be used to view downloaded files, I think it should not use
libmozjs185-dev which has broken sandboxing (as far as I 
understand).


Note that this bug (#710616) is not fixed in unstable yet, but
included in the suggested patch for #710082.


I think this means we get to wait until it reaches unstable so that 
we

get some feedback before considering it for stable? Hoping this is
correct, tagging the bug report accordingly.


Given the current state of the package in unstable, I'd be tempted to 
sugggest it should rather be a removal candidate. The highest popcon of 
any of the binary packages is less than 90, with the "recent" count only 
making it to 2, it has no reverse-dependencies and a four-month old RC 
bug with no follow-up (well, it's six months old, but it's only been RC 
for four of those).


It looks like we'll be accepting the newer iceweasel packages from 
security for 7.2, so under the circumstances I'd be prepared to accept 
the direct fix so long as the remaining functionality of the package 
gets some testing before the point release (assuming the consensus is to 
fix rather than RM the package). If anyone has some insight in to how 
useful the package is once the Javascript support has been removed, that 
would be appreciated.


Regards,

Adam


--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/6d4f11b464d617eaf054b21e0bba6...@mail.adsl.funky-badger.org

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-09-23 Thread Ansgar Burchardt

Cyril Brulebois  writes:
> Ansgar Burchardt  (2013-08-17):
>> I prepared an update for openvrml that disable JavaScript support as
>> the package fails to build with newer versions of libmozjs-dev. As it
>> might be used to view downloaded files, I think it should not use
>> libmozjs185-dev which has broken sandboxing (as far as I understand).
>> 
>> Note that this bug (#710616) is not fixed in unstable yet, but
>> included in the suggested patch for #710082.
>
> I think this means we get to wait until it reaches unstable so that we
> get some feedback before considering it for stable? Hoping this is
> correct, tagging the bug report accordingly.

Depends on what will happen with iceweasel at the point release. The
package fails to build against the newer version of Mozilla's JavaScript
engine (and thus would no longer be installable if iceweasel gets
accepted for 7.2).

I have no special interest in the package as therefor didn't investigate
the other FTBFS bugs it's currently affected by in unstable.

Ansgar


-- 
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/87mwn4dlrl@deep-thought.43-1.org

Processed: Re: Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-09-22 Thread Debian Bug Tracking System

Processing control commands:

> tag -1 moreinfo wheezy
Bug #719966 [release.debian.org] pu: package openvrml/0.18.9-5+deb7u1
Added tag(s) moreinfo.

-- 
719966: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=719966
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems


--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: 
http://lists.debian.org/handler.s.b719966.13799074824629.transcr...@bugs.debian.org

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-09-22 Thread Cyril Brulebois

Control: tag -1 moreinfo wheezy

Ansgar Burchardt  (2013-08-17):
> I prepared an update for openvrml that disable JavaScript support as
> the package fails to build with newer versions of libmozjs-dev. As it
> might be used to view downloaded files, I think it should not use
> libmozjs185-dev which has broken sandboxing (as far as I understand).
> 
> Note that this bug (#710616) is not fixed in unstable yet, but
> included in the suggested patch for #710082.

I think this means we get to wait until it reaches unstable so that we
get some feedback before considering it for stable? Hoping this is
correct, tagging the bug report accordingly.

Mraw,
KiBi.


signature.asc
Description: Digital signature

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

2013-08-17 Thread Ansgar Burchardt

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: pu

I prepared an update for openvrml that disable JavaScript support as the
package fails to build with newer versions of libmozjs-dev. As it might
be used to view downloaded files, I think it should not use
libmozjs185-dev which has broken sandboxing (as far as I understand).

Note that this bug (#710616) is not fixed in unstable yet, but included
in the suggested patch for #710082.

Ansgar
diff -u openvrml-0.18.9/debian/changelog openvrml-0.18.9/debian/changelog
--- openvrml-0.18.9/debian/changelog
+++ openvrml-0.18.9/debian/changelog
@@ -1,3 +1,10 @@
+openvrml (0.18.9-5+deb7u1) wheezy; urgency=low
+
+  * Disable JavaScript support as newer versions of Mozilla's JS engine are
+not supported by openvrml. (Closes: #710616)
+
+ -- Ansgar Burchardt   Sat, 17 Aug 2013 10:23:05 +0200
+
 openvrml (0.18.9-5) unstable; urgency=low
 
   * Move example directory in libopenvrml9 to libopenvrml-doc.
diff -u openvrml-0.18.9/debian/control openvrml-0.18.9/debian/control
--- openvrml-0.18.9/debian/control
+++ openvrml-0.18.9/debian/control
@@ -7,7 +7,7 @@
 	libgl1-mesa-dev | libgl-dev,
 	zlib1g-dev, libjpeg-dev, libpng12-dev, libx11-dev,
 	libxext-dev, libfreetype6-dev, libfontconfig1-dev, libsdl1.2-dev,
-	default-jdk, libmozjs-dev(>= 8.0), libboost-dev, libboost-test-dev,
+	default-jdk, libboost-dev, libboost-test-dev,
 	libboost-thread-dev, libboost-filesystem-dev, libgtk2.0-dev,
 	libxmu-dev, procps, graphviz, libgnomeui-dev, libglade2-dev,
 	libcurl4-gnutls-dev, xulrunner-dev, libgtkglext1-dev, libltdl-dev,
diff -u openvrml-0.18.9/debian/rules openvrml-0.18.9/debian/rules
--- openvrml-0.18.9/debian/rules
+++ openvrml-0.18.9/debian/rules
@@ -22,7 +22,8 @@
 --mandir=\$${prefix}/share/man \
 			--infodir=\$${prefix}/share/info \
 			--libdir=\$${prefix}/lib/$(DEB_HOST_MULTIARCH)/ \
---libexecdir=\$${prefix}/lib/$(DEB_HOST_MULTIARCH)/openvrml
+--libexecdir=\$${prefix}/lib/$(DEB_HOST_MULTIARCH)/openvrml \
+--disable-script-node-javascript
 
 ifeq ($(DEB_BUILD_GNU_TYPE), $(DEB_HOST_GNU_TYPE))
   confflags += --build $(DEB_HOST_GNU_TYPE)

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Processed: Re: Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Processed: Re: Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

Bug#719966: pu: package openvrml/0.18.9-5+deb7u1

9 matches

Site Navigation

Mail list logo

Footer information