From: Mark H Weaver <mhw@netris.org>
To: Maxime Devos <maximedevos@telenet.be>, guix-devel@gnu.org
Subject: Re: [PATCHES] ImageMagick security updates without grafting
Date: Sat, 27 Mar 2021 20:01:59 -0400 [thread overview]
Message-ID: <87k0psdu25.fsf@netris.org> (raw)
In-Reply-To: <927d66ccc760afacdb88485c5158731458d52dd6.camel@telenet.be>
Hi Maxime,
Maxime Devos <maximedevos@telenet.be> writes:
> This approach (& patches) look good to me.
Thanks for looking.
> What does ‘guix refresh --list-dependent imagemagick@6.9.11-48’
> output now?
When I last checked, it reported on the order of 2400 dependent package
rebuilds.
> If it there are many dependent packages, could some
> of them use imagemagick/stable, dblatex/stable or gtk-doc/stable
> as well?
Yes, that's exactly the purpose of this patch set. Although at present,
the only user of 'imagemagick/stable' is 'dblatex/stable', and the only
user of 'dblatex/stable' is 'gtk-doc/stable'.
> Maybe add a comment to imagemagick/stable on why there is a
> /stable variant, for future reference.
Good idea. I added comments similar to what you had suggested.
Thanks for the review! I went ahead and pushed a revised version of
these commits to 'master', starting with commit
7c2b840d6c586f80fe22a862ce4e362c997559a5, but if anyone has further
input on this approach, it's still not too late to change things.
Thanks,
Mark
next prev parent reply other threads:[~2021-03-28 0:03 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-27 13:09 [PATCHES] ImageMagick security updates without grafting Mark H Weaver
2021-03-27 14:36 ` Maxime Devos
2021-03-28 0:01 ` Mark H Weaver [this message]
2021-03-28 9:59 ` Maxime Devos
2021-03-28 21:37 ` Mark H Weaver
2021-03-28 22:05 ` Maxime Devos
2021-03-29 21:28 ` Mark H Weaver
2021-03-30 22:23 ` Mark H Weaver
2021-03-28 22:33 ` Needed: tooling to detect references to buggy */stable packages (was: Re: [PATCHES] ImageMagick security updates without grafting) Mark H Weaver
2021-03-29 6:54 ` Maxime Devos
2021-04-04 20:14 ` Mark H Weaver
2021-04-05 9:53 ` Maxime Devos
2021-03-29 12:43 ` Ricardo Wurmus
2021-03-30 10:39 ` Needed: tooling to detect references to buggy */stable packages Ludovic Courtès
2021-04-04 19:54 ` Mark H Weaver
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://guix.gnu.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87k0psdu25.fsf@netris.org \
--to=mhw@netris.org \
--cc=guix-devel@gnu.org \
--cc=maximedevos@telenet.be \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).