[MIR] pkgconf, replacement for pkg-config
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
pkgconf (Debian) |
Fix Released
|
Unknown
|
|||
pkgconf (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
Rationale: debian moved from pkg-config to new pkgconf version, providing same binary.
Availability: The package is already available in universe and building on all archs.
Rationale: needed for mostly every package in the archive.
Security, It's well maintained upstream, in Debian, and in Ubuntu. There are no known serious issues.
Only one CVE dated 2018
CVE-2018-1000221 pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerabilit ...
UI standards: n/a
Dependencies: atf-sh on i386 is needed to build.
Standards compliance: no known issues.
Maintenance: No known issues.
pkg-config had a long time standing Ubuntu delta, that is now dropped because pkgconf supports profiles and the multiarch lib location search is now default in Debian too.
Related branches
- Lukas Märdian: Approve
- Steve Langasek: Approve
-
Diff: 13 lines (+1/-1)1 file modifiedsupported-development-common (+1/-1)
CVE References
Changed in pkgconf (Ubuntu): | |
assignee: | nobody → MIR approval team (ubuntu-mir) |
status: | New → Confirmed |
importance: | Undecided → Medium |
Changed in pkgconf (Ubuntu): | |
assignee: | MIR approval team (ubuntu-mir) → nobody |
Changed in pkgconf (Ubuntu): | |
assignee: | nobody → Ioanna Alifieraki (joalif) |
tags: | removed: rls-ll-incoming |
tags: | added: update-excuses |
Changed in pkgconf (Debian): | |
status: | Unknown → New |
tags: |
added: lunar update-excuse removed: update-excuses |
no longer affects: | pkg-config (Ubuntu) |
Changed in pkgconf (Ubuntu): | |
status: | In Progress → Fix Committed |
Changed in pkgconf (Debian): | |
status: | New → Fix Released |
Adding a bug task for pkg-config and rls-ll-incoming tag, to bring the package ownership question up for discussion with the Foundations team.