Date: Mon, 13 Apr 2009 11:09:41 +0400 From: Stanislav Sedov <stas@FreeBSD.org> To: Max Brazhnikov <makc@freebsd.org> Cc: Stanislav Sedov <stas@freebsd.org>, cvs-ports@freebsd.org, cvs-all@freebsd.org, ports-committers@freebsd.org Subject: Re: cvs commit: ports/graphics/lcms Makefile distinfo pkg-plist Message-ID: <20090413110941.d30e06d4.stas@FreeBSD.org> In-Reply-To: <200904130122.44345.makc@freebsd.org> References: <200904071219.n37CJ1cb093967@repoman.freebsd.org> <200904130122.44345.makc@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Mon, 13 Apr 2009 01:22:44 +0400 Max Brazhnikov <makc@freebsd.org> mentioned: > On Tue, 7 Apr 2009 12:19:01 +0000 (UTC), Stanislav Sedov wrote: > > stas 2009-04-07 12:19:01 UTC > > > > FreeBSD ports repository > > > > Modified files: > > graphics/lcms Makefile distinfo pkg-plist > > Log: > > - Update to 1.18. > > - Do not install .la and static library files. > This breaks editors/koffice build. Any reason for removing static library? > To uncover what apps tries to link static library instead of dynamic one. :-) The main reasons for that is follows: 1) Using shared library will decrease the memory usage 2) Using shared library will allow one to fix security vulnerables in lcms just by updating this library. Otherwise, we have no intention what ports need to be documented in the vuxml database in case of a security vulnerability. Applications that link static libraries instead of shared ones will be still vulnerable even after updating the library port. - -- Stanislav Sedov ST4096-RIPE -----BEGIN PGP SIGNATURE----- iEYEARECAAYFAkni5ToACgkQK/VZk+smlYG+4gCeItdLst2ptM1W4o0F9K98ogkr m0AAoIUI69Mm3wwC5D/XCMy/uYJ849sf =IYjJ -----END PGP SIGNATURE----- !DSPAM:49e2e531967006804480904!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090413110941.d30e06d4.stas>