'Twas brillig, and David Walser at 19/04/12 21:56 did gyre and gimble: > nicolas vigier <boklm@...> writes: >> On Wed, 18 Apr 2012, David Walser wrote: >> >>> Should we drop the swftools package from Cauldron? >>> >>> Gentoo has dropped it because it is unmaintained upstream and has an > unpatched security flaw: >>> http://lwn.net/Alerts/493118/ >> >> It seems this flaw was fixed in their git repository in 2010 : >> > http://wiki.swftools.org/viewgit/?a=commit&p=swftools-git%20&h=5a4a20931aade60f0e99df0819fbd1c007a705da >> >> They don't release new versions often, but still update their git >> repository. > > Do we have this fix in our package?
I see no patches in SVN so I presume not. As Johnny said, 0.9.2 is out. Perhaps we should include this for mga2? Col -- Colin Guthrie colin(at)mageia.org http://colin.guthr.ie/ Day Job: Tribalogic Limited http://www.tribalogic.net/ Open Source: Mageia Contributor http://www.mageia.org/ PulseAudio Hacker http://www.pulseaudio.org/ Trac Hacker http://trac.edgewall.org/
