Re: Consider to switch libjpeg-turbo as default jpeg

To: Greg Troxel <gdt%lexort.com@localhost>
Subject: Re: Consider to switch libjpeg-turbo as default jpeg
From: Robert Bagdan <kikadf.01%gmail.com@localhost>
Date: 2025年3月18日 14:46:07 +0100

> I am unclear on how jpeg and jpeg-turbo, as projecs, deal with
> security issues and prompt releases. I think we should look at them
> both and understand if we are moving to a worse (or better) situation
> before leaping.
For jpeg: https://www.cvedetails.com/vendor/17990/IJG.html
For libjpeg-turbo: https://www.cvedetails.com/vendor/17075/Libjpeg-turbo.html
Seems the current releases aren't affected by unfixed CVEs, but they aren't
in a hurry to fix security bugs.
However the libjpeg-turbo development is more active and as I see,
more popular.
-- 
Regards,
kikadf

Follow-Ups:
- Re: Consider to switch libjpeg-turbo as default jpeg
  - From: Greg Troxel

References:
- Consider to switch libjpeg-turbo as default jpeg
  - From: Robert Bagdan
- Re: Consider to switch libjpeg-turbo as default jpeg
  - From: Greg Troxel

Prev by Date: policy proposal: updating packages with many dependencies
Next by Date: Re: Consider to switch libjpeg-turbo as default jpeg
Previous by Thread: Re: Consider to switch libjpeg-turbo as default jpeg
Next by Thread: Re: Consider to switch libjpeg-turbo as default jpeg
Indexes:

Home | Main Index | Thread Index | Old Index