[MIR] libsoxr
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libsoxr (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
[Availability]
libsoxr is in "universe", it compiles for all target architectures:
https:/
[Rationale]
I would like libsoxr to be moved to "main" so that it can be used in PulseAudio as an audio resampler backend (see https:/
[Security]
The library is used for raw audio processing. Its input and output data is produced and consumed by PulseAudio server. The library builds into two library packages: libsoxr0 and libsoxr-lsr0. The library does not use network or external strings. Library from libsoxr-lsr0 uses environment variables to control some aspects of its behavior, but this library will not be used in PulseAudio (only libsoxr0 will).
The environment variables are: SOXR_LSR_
There were no CVE found for libsoxr:
http://
https:/
http://
Package build scripts enable hardening.
Overall I consider this library to have low security risk.
[Quality assurance]
The package build scripts automatically run library tests. There are currently no open bug reports for the package in Ubuntu:
https:/
There are couple of bugs in Debian:
https:/
There are no bugs in the upstream bug tracker:
https:/
Recent discussion is happening on the project forum:
https:/
Package installation does not require any manual configuration. There is a debian/watch file.
[Dependencies]
The library depends only on libc6 and libgomp1, both of which are in "main".
[Standards compliance]
AFAICS, FHS and Debian policy are fulfilled.
[Maintenance]
The package is currently maintained by Debian Multimedia Maintainers.
[Background information]
Package description adequately describe the purpose of the library.
I have been building PulseAudio locally with support for libsoxr and have been using it for a few years now, without problem. I used libsoxr in other projects as well. This is a fast library that produces audio of a very good quality.
See also: bug 1574746