From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:41235)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1cwSXh-0002XV-Hu
	for guix-patches@gnu.org; Fri, 07 Apr 2017 07:59:06 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1cwSXe-0005UX-FV
	for guix-patches@gnu.org; Fri, 07 Apr 2017 07:59:05 -0400
Received: from debbugs.gnu.org ([208.118.235.43]:37595)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
	(Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
	id 1cwSXe-0005UP-Bf
	for guix-patches@gnu.org; Fri, 07 Apr 2017 07:59:02 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1cwSXe-00051H-2F
	for guix-patches@gnu.org; Fri, 07 Apr 2017 07:59:02 -0400
Subject: bug#26390: Guitarix: Don't use webkitgtk-2.4
Resent-Message-ID: <handler.26390.B.149156629119235@debbugs.gnu.org>
Received: from eggs.gnu.org ([2001:4830:134:3::10]:41111)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <leo@famulari.name>) id 1cwSWe-0002Um-NU
	for guix-patches@gnu.org; Fri, 07 Apr 2017 07:58:01 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <leo@famulari.name>) id 1cwSWb-0004xT-Lm
	for guix-patches@gnu.org; Fri, 07 Apr 2017 07:58:00 -0400
Received: from out1-smtp.messagingengine.com ([66.111.4.25]:42760)
	by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
	(Exim 4.71) (envelope-from <leo@famulari.name>) id 1cwSWb-0004wp-3T
	for guix-patches@gnu.org; Fri, 07 Apr 2017 07:57:57 -0400
Date: Fri, 7 Apr 2017 07:57:54 -0400
From: Leo Famulari <leo@famulari.name>
Message-ID: <20170407115754.GA21115@jasmine>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha256;
	protocol="application/pgp-signature"; boundary="wq9mPyueHGvFACwf"
Content-Disposition: inline
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-patches/>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+kyle=kyleam.com@gnu.org
Sender: "Guix-patches" <guix-patches-bounces+kyle=kyleam.com@gnu.org>
To: 26390@debbugs.gnu.org
Cc: Ricardo Wurmus <rekado@elephly.net>


--wq9mPyueHGvFACwf
Content-Type: multipart/mixed; boundary="bp/iNruPH9dso1Pn"
Content-Disposition: inline


--bp/iNruPH9dso1Pn
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

Webkitgtk-2.4 is unmaintained upstream and contains a large number of
security vulnerabilities. The webkitgtk developers have asked
distributions to stop offering it. [0]

This patch removes webkitgtk-2.4 from guitarix. Guitarix builds and
starts without; I don't know what features are disabled.

Ricardo, what do you think?

[0]
https://blogs.gnome.org/mcatanzaro/2016/02/01/on-webkit-security-updates/

--bp/iNruPH9dso1Pn
Content-Type: text/plain; charset=us-ascii
Content-Disposition: attachment; filename="0001-gnu-guitarix-Disable-webkit-features.patch"
Content-Transfer-Encoding: quoted-printable

=46rom b19ec539033acdbdbf1d99989d39528e7350646c Mon Sep 17 00:00:00 2001
=46rom: Leo Famulari <leo@famulari.name>
Date: Fri, 7 Apr 2017 07:44:05 -0400
Subject: [PATCH] gnu: guitarix: Disable webkit features.

The only version of webkit supported by guitarix is unmaintained and contai=
ns a
large number of security vulnerabilities, and is due to be removed from Gui=
x.

* gnu/packages/audio.scm (guitarix)[inputs]: Remove webkitgtk/gtk+-2.
---
 gnu/packages/audio.scm | 1 -
 1 file changed, 1 deletion(-)

diff --git a/gnu/packages/audio.scm b/gnu/packages/audio.scm
index 9dc679734..9acccaf11 100644
--- a/gnu/packages/audio.scm
+++ b/gnu/packages/audio.scm
@@ -1166,7 +1166,6 @@ patches that can be used with softsynths such as Timi=
dity and WildMidi.")
        ("jack" ,jack-1)
        ("gtkmm" ,gtkmm-2)
        ("gtk+" ,gtk+-2)
-       ("webkitgtk/gtk+-2" ,webkitgtk/gtk+-2)
        ("fftwf" ,fftwf)
        ("lrdf" ,lrdf)
        ("zita-resampler" ,zita-resampler)
--=20
2.12.2


--bp/iNruPH9dso1Pn--

--wq9mPyueHGvFACwf
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iQIzBAABCAAdFiEEsFFZSPHn08G5gDigJkb6MLrKfwgFAljnfr8ACgkQJkb6MLrK
fwgPXBAAywZf9wDCAXagpFdJWMHPLIHc5dTkyRvQ7XdJtrqYxh1Ujy2bkOaV2dGv
oMLoaQ2KdEqIAOiaaqwg1Mhul0z77UTp920loUBPzL6ESl1RVJWkjskP+c+wL+OE
ZY22coE0ZyeOupprwFZPZ3XuNpUic6noCi0fhLw7V999DYeK4mZCoAt+RQ4NOdrB
y+RBbF7IY12psv32mXzpiRdA3A0bPTX7M5vMkQoufC8bfW682FDXDD98ldFJsF2Q
80RvAwP4cmReOyEG8v11yY+pyE6YL5i4WLnzy8wDUQmh/mYbc0ADdUpLyj8owBAt
ClsMfjXtiUxXinEgARjmW/9XKLZLj+7gBSDwz1a/0jMfFbbMPM4CCcLSwfXTmhqY
wWQjlRx+z+1FZXbTiJhuQPKVA98Alhth6HrrBmv7CZgB62IiGwFHPkE07oMqlcWX
BZokqxJNSDf0BfeVSLID0UbxLvvCkz7Qnx3YKjcIE0zLe+17wi9WVMNIL5z8+nCD
4YJGcge4D84Q3Bz9lghASanIDQSLMrWefwArSVQ6ws0RSCcIJGIXrkXW9uh7XeXr
8V1RWLyhXaUSly2ObPI16bUe7h3XmLnBBIN9yG6nOtENLUmJOsKisVlK2NhLhMzc
6IrJgQ09Vkg8s+1iArb4thH2gIA+vH9vlYG/HZ57vZ97oykMm6M=
=fSWF
-----END PGP SIGNATURE-----

--wq9mPyueHGvFACwf--