From: Gustavo Zacarias <gustavo@zacarias.com.ar>
To: buildroot@busybox.net
Subject: [Buildroot] [PATCH] glibc: bump default to version 2.23
Date: Wed, 22 Jun 2016 19:58:23 -0300 [thread overview]
Message-ID: <576B180F.70309@zacarias.com.ar> (raw)
In-Reply-To: <57d9d2a6-9bcc-c512-4e09-6eb8f8958c76@mind.be>
On 22/06/16 17:38, Arnout Vandecappelle wrote:
> My take on this: we should follow the stable branch of upstream. Since glibc
> has no concept of stable branches (in fact, none of the libc's do), we really
> should follow upstream releases aggressively.
>
> In fact, I think it's quite unreasonable that we don't have stable updates for
> glibc (or any other libc). As a distro, it's our responsibility to make sure our
> users get stable updates, particularly for something as important as glibc.
> Since we (currently) don't have the bandwidth to do that, and since there simply
> is no viable upstream to rely on [*], we should probably consider dropping the
> multi-version glibc... Topic for discussion at the next BR developer meeting.
>
>
> Regards,
> Arnout
>
> [*] I've checked if we could use another distro, but most are on glibc 2.19...
> Debian would be an option for glibc 2.22, but for 2.23 and 2.24 there will
> probably no viable distro.
Hi.
My $.02: Ubuntu 16.04 LTS is on 2.23.
In general we haven't seen big regressions with glibc upgrades compared
to binutils/gcc.
Also, and don't take this as cockyness, i'm like the only one (except
for Bernd one time) putting out security patches for glibc.
Currently my spare time is pretty thin, and backporting patches for two
versions of glibc and testing them is much more work than a single version.
If we default to n-1 this means carrying on more patches since generally
n-1 has more vulnerabilities than n when talking about glibc.
If in consequence i only post patches for n and we default to n-1, well,
that sucks plain and simple, since we would be shipping known-vulnerable
by default, and how many users will bother to switch to latest glibc?
Regards.
next prev parent reply other threads:[~2016-06-22 22:58 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-06-22 10:09 [Buildroot] [PATCH] glibc: bump default to version 2.23 Gustavo Zacarias
2016-06-22 14:53 ` Peter Korsgaard
2016-06-22 15:02 ` Gustavo Zacarias
2016-06-22 15:13 ` Thomas Petazzoni
2016-06-22 15:18 ` Gustavo Zacarias
2016-06-22 15:27 ` Peter Korsgaard
2016-06-22 20:38 ` Arnout Vandecappelle
2016-06-22 22:58 ` Gustavo Zacarias [this message]
2016-06-27 20:00 ` Peter Korsgaard
2016-06-27 19:27 ` Peter Korsgaard
2016-06-27 20:56 ` Arnout Vandecappelle
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=576B180F.70309@zacarias.com.ar \
--to=gustavo@zacarias.com.ar \
--cc=buildroot@busybox.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox