Community Packages

Please read this before reporting a bug:

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#71410 - [sox] switch to newer snapshot

Attached to Project: Community Packages
Opened by T.J. Townsend (blakkheim) - Thursday, 01 July 2021, 03:16 GMT
Last edited by Toolybird (Toolybird) - Thursday, 15 September 2022, 20:33 GMT
Task Type Feature Request
Category Packages
Status Closed
Assigned To David Runge (dvzrv)
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No


The latest upstream SoX package is from 2015, with many security fixes missing and no new release in sight. Instead of backporting lots of them (including making sure they're applied in a specific order, since half of them don't work otherwise) I'm proposing that we switch to a snapshot of the latest commit (May 2021). Gentoo is doing the same thing.

Additional info:
I've emailed the most active developer of SoX and asked about cutting a new release.
   sox.diff (21.4 KiB)
This task depends upon

Closed by  Toolybird (Toolybird)
Thursday, 15 September 2022, 20:33 GMT
Reason for closing:  Fixed
Additional comments about closing: mmunity/commit/4a2f8ba0
Comment by David Runge (dvzrv) - Thursday, 01 July 2021, 08:21 GMT
@mysta: Thanks for the report.

> I've emailed the most active developer of SoX and asked about cutting a new release.

So have I, more than two years ago and then a year after that. At first I received no reply at all and then a condescending answer trying to shut down the topic. Maybe you will have more luck.

As is I would be even more inclined to remove sox from the repositories as upstream clearly is unable or unwilling to release.
Comment by T.J. Townsend (blakkheim) - Thursday, 01 July 2021, 16:03 GMT
Got the reply this morning. In response to my question "Is there any chance you could do a new release with all of the current security fixes in it?" he said "Only a chance. :-)"

And that was all there was, so I get what you mean.

Nevertheless I think this diff is a valid proposal for the time being. SoX is an infinitely useful tool for so many things. I'd like to keep it if we can.
Comment by T.J. Townsend (blakkheim) - Wednesday, 03 August 2022, 18:44 GMT
This can be closed if it's for sure not going to be implemented.
Comment by David Runge (dvzrv) - Friday, 12 August 2022, 15:37 GMT
Sorry, just many other things to fix. Will look into it as soon as time permits.