View previous topic :: View next topic |
Author |
Message |
cord Guru


Joined: 28 Apr 2007 Posts: 324
|
Posted: Sun Feb 09, 2020 8:05 pm Post subject: |
|
|
Why it is not in portage now? |
|
Back to top |
|
 |
asturm Developer


Joined: 05 Apr 2007 Posts: 8053 Location: Austria
|
Posted: Sun Feb 09, 2020 8:24 pm Post subject: |
|
|
Security vulnerability, no maintainer: https://bugs.gentoo.org/670028 _________________ backend.cpp:92:2: warning: #warning TODO - this error message is about as useful as a cooling unit in the arctic |
|
Back to top |
|
 |
logrusx Tux's lil' helper

Joined: 22 Feb 2018 Posts: 96
|
Posted: Sun Feb 23, 2020 9:58 pm Post subject: |
|
|
You can find an ebuild here, use it on your own risk.
Regards,
Georgi |
|
Back to top |
|
 |
fedeliallalinea Bodhisattva


Joined: 08 Mar 2003 Posts: 25111 Location: here
|
|
Back to top |
|
 |
logrusx Tux's lil' helper

Joined: 22 Feb 2018 Posts: 96
|
Posted: Mon Feb 24, 2020 10:41 am Post subject: |
|
|
Looks that way, but I have no idea, if there's something else. I myself don't consider me a security expert, so I added that warning. Plus it is a binary distribution, building from source proved to be hard. Gradle gets in the way and it doesn't seem to be Gentoo friendly.
However I don't think it possesses a risk for regular desktop use. As far as I understand, those security vulnerabilities require users to do more advanced things to be exploited, like running Groovy scripts or at least opening files they obtained from somewhere else. If you use it to create and manipulate your own content, it seems fine.
Regards,
Georgi |
|
Back to top |
|
 |
|