Bug#987299: unblock: gstreamer1.0/1.18.4-1
Hi Sebastian, On 03-05-2021 10:21, Sebastian Dröge wrote: > On Sat, 2021-05-01 at 22:10 +0200, Paul Gevers wrote: >> >> On 21-04-2021 08:31, Sebastian Dröge wrote: >>> Please unblock package gstreamer1.0 >> >> unblocked. >> >>> This does not affect only the gstreamer1.0 source package but also: >>> - gst-plugins-base1.0 >>> - gst-plugins-good1.0 >>> - gst-plugins-bad1.0 >>> - gst-plugins-ugly1.0 >>> - gst-libav1.0 >>> - gst-rtsp-server-1.0 >>> - gstreamer-editing-services1.0 >>> - gstreamer-vaapi >> >> those too. > > Thanks, but it seems like gstreamer1.0 and gst-plugins-bad1.0 are not > unblocked. The others migrated to testing successfully. Apparently I only ever looked at the list gst-plugins-bad1.0 *is* unblocked, but didn't age yet. unblocked gstreamer1.0 for real now. Paul OpenPGP_signature Description: OpenPGP digital signature
Bug#987299: unblock: gstreamer1.0/1.18.4-1
Hello, On Wed, 21 Apr 2021 09:31:12 +0300 =?utf-8?q?Sebastian_Dr=C3=B6ge?= wrote: > Please unblock package gstreamer1.0 > > GStreamer 1.18.4 is a bugfix release on top of 1.18.3, which is currently in > testing/unstable. 1.18.4 is currently waiting in experimental until the > unblock request is accepted. > > This does not affect only the gstreamer1.0 source package but also: > - gst-plugins-base1.0 > - gst-plugins-good1.0 > - gst-plugins-bad1.0 Yesterday, I uploaded src:gst-plugins-bad1.0 1.18.4-3 without knowing that the unblock was already requested. My changes (see in the attached patch) are not impacting the release architectures, they are fixing issues with different ports. Are my changes a problem for the release team? Should they be reverted? Sorry for the disturbance, Kind regards, Laurent Bigonville diff --git a/debian/changelog b/debian/changelog index 3cf3095a..1b45bf3d 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,13 @@ +gst-plugins-bad1.0 (1.18.4-3) unstable; urgency=medium + + * Team upload. + * debian/control: Add more architectures to the opencv BD + * debian/control: Do not make libgstreamer-plugins-bad1.0-dev depend on +opencv where it's not available (Closes: #987396) + * Do not try to install the sctp on non-linux architectures + + -- Laurent Bigonville Mon, 26 Apr 2021 17:07:50 +0200 + gst-plugins-bad1.0 (1.18.4-2) unstable; urgency=medium * Upload to unstable. diff --git a/debian/control b/debian/control index e2dece74..de5bbf23 100644 --- a/debian/control +++ b/debian/control @@ -51,8 +51,8 @@ Build-Depends: debhelper, libnice-dev (>= 0.1.14), libofa0-dev (>= 0.9.3), libopenal-dev (>= 1:1.14), - libopencv-dev (>= 3.0.0) [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x powerpc ppc64 riscv64], - opencv-data [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x powerpc ppc64 riscv64], + libopencv-dev (>= 3.0.0) [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x alpha hppa hurd-i386 m68k powerpc ppc64 riscv64], + opencv-data [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x alpha hppa hurd-i386 m68k powerpc ppc64 riscv64], libwpebackend-fdo-1.0-dev (>= 1.6.0) [amd64 arm64 armel armhf hppa i386 mipsel ppc64 ppc64el s390x sparc64 x32], libwpewebkit-1.0-dev (>= 2.28.0) [amd64 arm64 armel armhf hppa i386 mipsel ppc64 ppc64el s390x sparc64 x32], libopenexr-dev, @@ -166,7 +166,7 @@ Description: GStreamer plugins from the "bad" set real live maintainer, or some actual wide use. Package: gstreamer1.0-opencv -Architecture: amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x powerpc ppc64 riscv64 +Architecture: amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x alpha hppa hurd-i386 m68k powerpc ppc64 riscv64 Multi-Arch: same Depends: ${misc:Depends}, ${shlibs:Depends}, @@ -248,7 +248,7 @@ Description: GStreamer libraries from the "bad" set is not guaranteed to be stable. Package: libgstreamer-opencv1.0-0 -Architecture: amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x powerpc ppc64 riscv64 +Architecture: amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x alpha hppa hurd-i386 m68k powerpc ppc64 riscv64 Section: libs Priority: optional Multi-Arch: same @@ -279,11 +279,11 @@ Section: libdevel Priority: optional Depends: ${misc:Depends}, libgstreamer-plugins-bad1.0-0 (= ${binary:Version}), - libgstreamer-opencv1.0-0 (= ${binary:Version}), + libgstreamer-opencv1.0-0 (= ${binary:Version}) [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x alpha hppa hurd-i386 m68k powerpc ppc64 riscv64], libgstreamer1.0-dev, libgstreamer-plugins-base1.0-dev, gir1.2-gst-plugins-bad-1.0 (= ${binary:Version}), - libopencv-dev (>= 2.3.0) + libopencv-dev (>= 2.3.0) [amd64 arm64 armel armhf i386 mips64el mipsel ppc64el s390x alpha hppa hurd-i386 m68k powerpc ppc64 riscv64] Conflicts: pitivi (<< 0.) Description: GStreamer development files for libraries from the "bad" set GStreamer is a streaming media framework, based on graphs of filters diff --git a/debian/gstreamer1.0-plugins-bad.install b/debian/gstreamer1.0-plugins-bad.install index 7949901b..fe627515 100644 --- a/debian/gstreamer1.0-plugins-bad.install +++ b/debian/gstreamer1.0-plugins-bad.install @@ -84,7 +84,6 @@ debian/tmp/usr/lib/*/gstreamer-1.0/libgstrtmp.so debian/tmp/usr/lib/*/gstreamer-1.0/libgstrtmp2.so debian/tmp/usr/lib/*/gstreamer-1.0/libgstrtponvif.so debian/tmp/usr/lib/*/gstreamer-1.0/libgstrtpmanagerbad.so -debian/tmp/usr/lib/*/gstreamer-1.0/libgstsctp.so debian/tmp/usr/lib/*/gstreamer-1.0/libgstsdpelem.so debian/tmp/usr/lib/*/gstreamer-1.0/libgstsegmentclip.so debian/tmp/usr/lib/*/gstreamer-1.0/libgstshm.so diff --git a/debian/rules b/debian/rules index
Bug#987299: unblock: gstreamer1.0/1.18.4-1
On Thu, 2021-04-22 at 14:17 +0200, Ivo De Decker wrote: > tags -1 confirmed moreinfo > > On Thu, Apr 22, 2021 at 02:09:20PM +0200, Moritz Mühlenhoff wrote: > > Am Wed, Apr 21, 2021 at 09:31:12AM +0300 schrieb Sebastian Dröge: > > > In addition to various more minor bugs, this release also fixes > > > CVE-2021-3497 > > > and CVE-2021-3498 as well as other potentially security-relevant > > > issues that > > > didn't get their own CVE. > > > > JFTR, there was an earlier discussion about CVE-2021-3497/CVE-2021- > > 3498 with > > Sebastian and given the way gstreamer release branches are handled > > we > > suggested to ask for an unblock of 1.18.4 (it's fundamentally quite > > similar > > to ffmpeg or vlc where we're also following release branches). > > OK, thanks for the clarification. > > You can go ahead with the uploads of these packages, and remove the > moreinfo tag from this bug once they are ready to migrate. Thanks, I'll upload the new versions this evening. > Please note that it seems there was a fix for #984579 in the upload > to unstable that isn't included in the upload to experimental. I > assume this will be fixed in the next upload as well. Yes, that's already included in my local version. signature.asc Description: This is a digitally signed message part
Bug#987299: unblock: gstreamer1.0/1.18.4-1
tags -1 confirmed moreinfo On Thu, Apr 22, 2021 at 02:09:20PM +0200, Moritz Mühlenhoff wrote: > Am Wed, Apr 21, 2021 at 09:31:12AM +0300 schrieb Sebastian Dröge: > > In addition to various more minor bugs, this release also fixes > > CVE-2021-3497 > > and CVE-2021-3498 as well as other potentially security-relevant issues that > > didn't get their own CVE. > > JFTR, there was an earlier discussion about CVE-2021-3497/CVE-2021-3498 with > Sebastian and given the way gstreamer release branches are handled we > suggested to ask for an unblock of 1.18.4 (it's fundamentally quite similar > to ffmpeg or vlc where we're also following release branches). OK, thanks for the clarification. You can go ahead with the uploads of these packages, and remove the moreinfo tag from this bug once they are ready to migrate. Please note that it seems there was a fix for #984579 in the upload to unstable that isn't included in the upload to experimental. I assume this will be fixed in the next upload as well. Cheers, Ivo
Bug#987299: unblock: gstreamer1.0/1.18.4-1
Am Wed, Apr 21, 2021 at 09:31:12AM +0300 schrieb Sebastian Dröge: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock package gstreamer1.0 > > In addition to various more minor bugs, this release also fixes CVE-2021-3497 > and CVE-2021-3498 as well as other potentially security-relevant issues that > didn't get their own CVE. JFTR, there was an earlier discussion about CVE-2021-3497/CVE-2021-3498 with Sebastian and given the way gstreamer release branches are handled we suggested to ask for an unblock of 1.18.4 (it's fundamentally quite similar to ffmpeg or vlc where we're also following release branches). Cheers, Moritz
Bug#987299: unblock: gstreamer1.0/1.18.4-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gstreamer1.0 GStreamer 1.18.4 is a bugfix release on top of 1.18.3, which is currently in testing/unstable. 1.18.4 is currently waiting in experimental until the unblock request is accepted. This does not affect only the gstreamer1.0 source package but also: - gst-plugins-base1.0 - gst-plugins-good1.0 - gst-plugins-bad1.0 - gst-plugins-ugly1.0 - gst-libav1.0 - gst-rtsp-server-1.0 - gstreamer-editing-services1.0 - gstreamer-vaapi and in theory gst-python1.0 and gst-plugins-bad1.0-contrib but those only got a new release without any other changes than the version number. It might make sense to get these two updated too to avoid user confusion caused by version numbers being out of sync. You can find a summary of the changes in the upstream release notes: https://gstreamer.freedesktop.org/releases/1.18/#1.18.4 While there are quite a few changes, they are all targeted fixes for bugs that were found, and the fixes were manually cherry-picked from the current development branch and considered low-risk. Each change is built upstream on many different platforms, the unit tests get run as well as the whole integration testsuite. At the bottom of the release notes you can find a link to the list of all merge requests that were merged for this release. In addition to various more minor bugs, this release also fixes CVE-2021-3497 and CVE-2021-3498 as well as other potentially security-relevant issues that didn't get their own CVE. Ubuntu 21.04 and Fedora 34 are also going to release with 1.18.4. Thanks for your consideration! unblock gstreamer1.0/1.18.4-1