[FFe] update libarchive to 3.6.0
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
evince (Ubuntu) |
Fix Released
|
Undecided
|
Jeremy Bícha | ||
libarchive (Ubuntu) |
Fix Released
|
Undecided
|
Jeremy Bícha |
Bug Description
I request a Feature Freeze Exception to update libarchive from 3.5.2 to 3.6.0 and build evince with libarchive 3.6.
This will allow us to drop 2 revert commits we added to evince to build with the older libarchive.
https:/
Changes
-------
https:/
https:/
Other Changes
-------------
1. libarchive: I am cherry-picking a security fix for CVE-2022-26280
2. libarchive: debian/rules was only running dh_auto_test if 'check' was set in DEB_BUILD_OPTIONS. I am changing that to only run if 'nocheck' is not set. That way we run the build tests by default.
I'm forwarding both those changes to Debian soon.
Build logs
----------
https:/
https:/
Testing done
------------
No errors in the install logs
Evince still works fine to open a variety of PDFs and a .cbz file I have.
File Roller still works fine to open a variety of compressed file types.
CVE References
description: | updated |
description: | updated |
Changed in libarchive (Ubuntu): | |
assignee: | nobody → Jeremy Bicha (jbicha) |
Changed in evince (Ubuntu): | |
assignee: | nobody → Jeremy Bicha (jbicha) |
Changed in libarchive (Ubuntu): | |
status: | Triaged → Fix Committed |
Changed in evince (Ubuntu): | |
status: | New → In Progress |
> https:/ /github. com/libarchive/ libarchive/ releases/ tag/v3. 6.0
This looks fine.
> https:/ /github. com/libarchive/ libarchive/ compare/ v3.5.2. ..v3.6. 0
I'm not reading this. An FFe request should include a human-readable *summary* of upstream feature- freeze- breaking that may introduce risk of regression; a git log is not that.
FFe granted.