[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#26109: [PATCH 3/7] gnu: Add dcmtk.
|
From: |
Kei Kebreau |
|
Subject: |
bug#26109: [PATCH 3/7] gnu: Add dcmtk. |
|
Date: |
Sat, 18 Mar 2017 12:21:40 -0400 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux) |
John Darrington <address@hidden> writes:
> On Fri, Mar 17, 2017 at 04:42:59PM -0400, Kei Kebreau wrote:
>
> Judging from the description of the software, it seems like this could
> fit in gnu/packages/image.scm.
> Also, the linter says that this package vulnerable to
> CVE-2015-8979. Supposedly this* upstream patch fixes it. Could you see
> if that fix works for this package?
>
> * https://github.com/commontk/DCMTK/commit/1b6bb76
>
>
> Unfortunately this patch doesn't go in. It seems that as well as fixing this
> vulnerability it also makes some unrelated changes. Furthermore, it depends
> on a whole lot of other patches which are not in this release.
>
> Do we have a procedure on what to do in cases like this?
>
> J'
I don't know if we have an official procedure, though we could try using
a later git snapshot with the security patch already integrated.
Hopefully that provides functionality compatible to that of the stable
release, though it's at least a five year difference between release times.
http://git.cmtk.org/?p=dcmtk.git,a=tags
signature.asc
Description: PGP signature
- bug#26112: [PATCH 2/7] gnu: Add niftilib., (continued)
bug#26109: [PATCH 3/7] gnu: Add dcmtk., John Darrington, 2017/03/15
bug#26109: [PATCH 3/7] gnu: Add dcmtk., Leo Famulari, 2017/03/20
bug#26109: [PATCH 3/7] gnu: Add dcmtk., John Darrington, 2017/03/20
bug#26109: [PATCH 3/7] gnu: Add dcmtk., Leo Famulari, 2017/03/21
bug#26110: [PATCH 7/7] gnu: Move vtk to image-processing.scm, John Darrington, 2017/03/15
bug#26114: [PATCH 1/7] gnu: Add itpp., Kei Kebreau, 2017/03/17
bug#26114: Done, John Darrington, 2017/03/18