Political, organizational discussions

Jeroen Roos | 23 Jun 2012 14:16

Outdated version of Zoph in Debian

Hi,

I am the maintainer of "Zoph", a webbased program to organize photos.
This program has been part of Debian for a long time, but it has not
been updated for a while. I have contacted the Debian maintainer,
Edelhard Becker, about this several times, but to no avail.

The current version in Debian has several issues, including a few
security-related of which some are severe. All of these are fixed in the
latest release, 0.9 which will be released today.

Because Edelhard seems to be unwilling and/or unable to fix this, I am
requesting you to either find a new maintainer or remove it from the
package database.

Thank you,
Jeroen Roos

--

-- 
Zoph Organizes PHotos
http://www.zoph.org

Henrique de Moraes Holschuh | 23 Jun 2012 18:05

Picon

Re: Outdated version of Zoph in Debian

submitter 678644 jeroen <at> zoph.org
thanks

On Sat, 23 Jun 2012, Jeroen Roos wrote:
> I am the maintainer of "Zoph", a webbased program to organize photos.
...
> The current version in Debian has several issues, including a few
> security-related of which some are severe. All of these are fixed in the
> latest release, 0.9 which will be released today.
> 
> Because Edelhard seems to be unwilling and/or unable to fix this, I am
> requesting you to either find a new maintainer or remove it from the
> package database.

Severity grave bug opened against package zoph, security tag added,
requesting either some packaging action or removal from the archive.

Popcon says that the outdated Debian package doesn't have many users:
http://qa.debian.org/popcon.php?package=zoph

If the current maintainer (or a new maintainer) doesn't show up very soon
with an upload of the new upstream version, it is probably best to remove it
from Debian, as apparently the users have already given up on the
Debian-packaged zoph and are probably using upstream packages directly.

Jeroen, I am sure our security team would appreciate if you could post the
relevant security fixes in your new upstream version to this bug report, as
we will have to do something about the Zoph package in Debian stable,
regardless of the fate of this package for the next stable release.

(Continue reading)

Debian Bug Tracking System | 23 Jun 2012 18:09

Picon

Processed: Re: Outdated version of Zoph in Debian

Processing commands for control <at> bugs.debian.org:

> submitter 678644 jeroen <at> zoph.org
Bug #678644 [zoph] Upstream request: new upload or remove from archive (security reasons)
Changed Bug submitter to 'jeroen <at> zoph.org' from 'Henrique de Moraes Holschuh <hmh <at> hmh.eng.br>'
> thanks
Stopping processing here.

Please contact me if you need assistance.
--

-- 
678644: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=678644
Debian Bug Tracking System
Contact owner <at> bugs.debian.org with problems

Laszlo Boszormenyi (GCS | 24 Jun 2012 02:59

Picon

Bug#678644: Outdated version of Zoph in Debian

Hi Henrique, Jeroen,

On Sat, 2012-06-23 at 13:05 -0300, Henrique de Moraes Holschuh wrote:
> On Sat, 23 Jun 2012, Jeroen Roos wrote:
> > I am the maintainer of "Zoph", a webbased program to organize photos.
> ...
> > The current version in Debian has several issues, including a few
> > security-related of which some are severe. All of these are fixed in the
> > latest release, 0.9 which will be released today.
 As I see, 0.9 is released then. Looking into the feature list, it would
be a shame to let it fade away.

> > Because Edelhard seems to be unwilling and/or unable to fix this, I am
> > requesting you to either find a new maintainer or remove it from the
> > package database.
 Although I'm not one of its users, but will package 0.9 after I slept a
bit. I was looking for a similar program _on the desktop_. Couldn't find
any, even if I know Shotwell.

> Popcon says that the outdated Debian package doesn't have many users:
> http://qa.debian.org/popcon.php?package=zoph
 Jeroen, can you share some insight? Users gave up on the outdated
package, it's just not known, has some drawbacks?

> If the current maintainer (or a new maintainer) doesn't show up very soon
> with an upload of the new upstream version, it is probably best to remove it
> from Debian, as apparently the users have already given up on the
> Debian-packaged zoph and are probably using upstream packages directly.
 I'm asking for advice. To be honest, #556573 [1] needs some luck to be
fixed for Wheezy. There's an usability bug, as one dependency of Zoph is

(Continue reading)

Jeroen Roos | 24 Jun 2012 15:44

Bug#678644: Outdated version of Zoph in Debian

On 24-06-12 02:59, Laszlo Boszormenyi (GCS) wrote:
>  I'm asking for advice. To be honest, #556573 [1] needs some luck to be
> fixed for Wheezy. There's an usability bug, as one dependency of Zoph is
> not even packaged. As I see, the NEW queue is long, even if I package
> that, may not reach testing and then stable. Without that, the very
> first step, importing photos won't work.
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=556573

As of version 0.8.2 Zoph no longer uses Perl and therefore the
dependency on Perl modules is no longer an issue.

Jeroen

--

-- 
Zoph Organizes PHotos
http://www.zoph.org

Jeroen Roos | 24 Jun 2012 15:44

Bug#678644: Outdated version of Zoph in Debian

On 24-06-12 02:59, Laszlo Boszormenyi (GCS) wrote:
>  I'm asking for advice. To be honest, #556573 [1] needs some luck to be
> fixed for Wheezy. There's an usability bug, as one dependency of Zoph is
> not even packaged. As I see, the NEW queue is long, even if I package
> that, may not reach testing and then stable. Without that, the very
> first step, importing photos won't work.
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=556573

As of version 0.8.2 Zoph no longer uses Perl and therefore the
dependency on Perl modules is no longer an issue.

Jeroen

--

-- 
Zoph Organizes PHotos
http://www.zoph.org

Laszlo Boszormenyi (GCS | 24 Jun 2012 02:59

Picon

Bug#678644: Outdated version of Zoph in Debian

Hi Henrique, Jeroen,

On Sat, 2012-06-23 at 13:05 -0300, Henrique de Moraes Holschuh wrote:
> On Sat, 23 Jun 2012, Jeroen Roos wrote:
> > I am the maintainer of "Zoph", a webbased program to organize photos.
> ...
> > The current version in Debian has several issues, including a few
> > security-related of which some are severe. All of these are fixed in the
> > latest release, 0.9 which will be released today.
 As I see, 0.9 is released then. Looking into the feature list, it would
be a shame to let it fade away.

> > Because Edelhard seems to be unwilling and/or unable to fix this, I am
> > requesting you to either find a new maintainer or remove it from the
> > package database.
 Although I'm not one of its users, but will package 0.9 after I slept a
bit. I was looking for a similar program _on the desktop_. Couldn't find
any, even if I know Shotwell.

> Popcon says that the outdated Debian package doesn't have many users:
> http://qa.debian.org/popcon.php?package=zoph
 Jeroen, can you share some insight? Users gave up on the outdated
package, it's just not known, has some drawbacks?

> If the current maintainer (or a new maintainer) doesn't show up very soon
> with an upload of the new upstream version, it is probably best to remove it
> from Debian, as apparently the users have already given up on the
> Debian-packaged zoph and are probably using upstream packages directly.
 I'm asking for advice. To be honest, #556573 [1] needs some luck to be
fixed for Wheezy. There's an usability bug, as one dependency of Zoph is

(Continue reading)

Henrique de Moraes Holschuh | 23 Jun 2012 18:05

Picon

Bug#678644: Outdated version of Zoph in Debian

submitter 678644 jeroen <at> zoph.org
thanks

On Sat, 23 Jun 2012, Jeroen Roos wrote:
> I am the maintainer of "Zoph", a webbased program to organize photos.
...
> The current version in Debian has several issues, including a few
> security-related of which some are severe. All of these are fixed in the
> latest release, 0.9 which will be released today.
> 
> Because Edelhard seems to be unwilling and/or unable to fix this, I am
> requesting you to either find a new maintainer or remove it from the
> package database.

Severity grave bug opened against package zoph, security tag added,
requesting either some packaging action or removal from the archive.

Popcon says that the outdated Debian package doesn't have many users:
http://qa.debian.org/popcon.php?package=zoph

If the current maintainer (or a new maintainer) doesn't show up very soon
with an upload of the new upstream version, it is probably best to remove it
from Debian, as apparently the users have already given up on the
Debian-packaged zoph and are probably using upstream packages directly.

Jeroen, I am sure our security team would appreciate if you could post the
relevant security fixes in your new upstream version to this bug report, as
we will have to do something about the Zoph package in Debian stable,
regardless of the fate of this package for the next stable release.

(Continue reading)

Henrique de Moraes Holschuh | 23 Jun 2012 18:05

Picon

Bug#678644: Outdated version of Zoph in Debian

submitter 678644 jeroen <at> zoph.org
thanks

On Sat, 23 Jun 2012, Jeroen Roos wrote:
> I am the maintainer of "Zoph", a webbased program to organize photos.
...
> The current version in Debian has several issues, including a few
> security-related of which some are severe. All of these are fixed in the
> latest release, 0.9 which will be released today.
> 
> Because Edelhard seems to be unwilling and/or unable to fix this, I am
> requesting you to either find a new maintainer or remove it from the
> package database.

Severity grave bug opened against package zoph, security tag added,
requesting either some packaging action or removal from the archive.

Popcon says that the outdated Debian package doesn't have many users:
http://qa.debian.org/popcon.php?package=zoph

If the current maintainer (or a new maintainer) doesn't show up very soon
with an upload of the new upstream version, it is probably best to remove it
from Debian, as apparently the users have already given up on the
Debian-packaged zoph and are probably using upstream packages directly.

Jeroen, I am sure our security team would appreciate if you could post the
relevant security fixes in your new upstream version to this bug report, as
we will have to do something about the Zoph package in Debian stable,
regardless of the fate of this package for the next stable release.

(Continue reading)

Return

Return to gmane.linux.debian.devel.project.

Search Archive

Language

Change language

Options

Current view: Threads only / Showing only 20 lines / Not hiding cited text.
Change to All messages, whole messages, or hide cited text.

Post a message
NNTP Newsgroup
Classic Gmane web interface
XML

XML

RSS Feed
List Information

About Gmane