Re: Building gettext without libtextstyle

bug-gettext

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Building gettext without libtextstyle

From:	Bruno Haible
Subject:	Re: Building gettext without libtextstyle
Date:	Tue, 28 Nov 2023 21:04:11 +0100

Santiago Vila wrote:
> by Zack Weinberg, which reads like this:
> 
>   libtextstyle is not packaged for Debian and depends on libcroco

"depends on libcroco" is also wrong. Neither gettext/DEPENDENCIES
nor libtextstyle/DEPENDENCIES mentions libcroco, not even as an optional
dependency.

>   has known security bugs

Before drawing conclusions based on "security bugs", a distro should
better ask upstream for the evaluation of that "security bug". This is
because the CVE system has gone crazy in the last couple of years, see
<https://news.ycombinator.com/item?id=37871480> and
<https://www.youtube.com/watch?v=2Mfgjp_aK3I> (*).

Things would have been clearer if I had posted my evaluation about said
"security bug". But things would also have been clearer if Debian had
asked me for this evaluation, before drawing conclusions.

Bruno

(*) To access youtube.com URLs, use yt-dlp, not a browser.

[Prev in Thread]

Current Thread

[Next in Thread]

Building gettext without libtextstyle, Santiago Vila, 2023/11/28
- Re: Building gettext without libtextstyle, Bruno Haible, 2023/11/28
  - Re: Building gettext without libtextstyle, Santiago Vila, 2023/11/30
    - Re: Building gettext without libtextstyle, Bruno Haible, 2023/11/30
- Re: Building gettext without libtextstyle, Bruno Haible <=

Prev by Date: Re: Building gettext without libtextstyle
Next by Date: Re: gcc BZ 112671
Previous by thread: Re: Building gettext without libtextstyle
Next by thread: Re: gcc BZ 112671
Index(es):
- Date
- Thread