Re: MBF: Removal of GTK2 from forky

To: Michael Biebl <biebl@debian.org>, debian-devel@lists.debian.org
Subject: Re: MBF: Removal of GTK2 from forky
From: Peter Blackman <peter@pblackman.plus.com>
Date: Mon, 12 Jan 2026 23:43:37 +0000
Message-id: <[🔎] d22c1df2-93bb-48fa-9086-a0187f3d2206@pblackman.plus.com>
Reply-to: peter@pblackman.plus.com
In-reply-to: <[🔎] 07d82d6c-ee88-43da-8f22-2977194f7de7@debian.org>
References: <[🔎] aWETbvd3tsvvT-Yr@remnant.pseudorandom.co.uk> <[🔎] 559881d3-4f38-41c1-ba47-8f86df42aed3@twolife.be> <[🔎] aWIvM68-SQvveWIz@hal9000.vv221.fr> <[🔎] 1f430d6c-2e38-4108-bffd-3e0d18708781@svario.it> <[🔎] DFMHBSGTNKNZ.39BDKXR868CJN@debian.org> <[🔎] 07d82d6c-ee88-43da-8f22-2977194f7de7@debian.org>

On 12/01/2026 15:25, Michael Biebl wrote:


Where do you expect that security fixes come from if there is no more active upstream?


Hi Michael,

Where do you expect the security bugs to come from if there is no more active upstream?

Only two CVE debian bugs were ever filed against gtk+2.0
and the most recent was 2015. (CVE raised 2013)

Regards,
Peter

Reply to:

Follow-Ups:
- Re: MBF: Removal of GTK2 from forky
  - From: Soren Stoutner <soren@debian.org>

References:
- Re: MBF: Removal of GTK2 from forky
  - From: Simon McVittie <smcv@debian.org>
- Re: MBF: Removal of GTK2 from forky
  - From: Sébastien Noel <sebastien@twolife.be>
- Re: MBF: Removal of GTK2 from forky
  - From: Antoine Le Gonidec <vv221@debian.org>
- Re: MBF: Removal of GTK2 from forky
  - From: Gioele Barabucci <gioele@svario.it>
- Re: MBF: Removal of GTK2 from forky
  - From: "Jonathan Dowland" <jmtd@debian.org>
- Re: MBF: Removal of GTK2 from forky
  - From: Michael Biebl <biebl@debian.org>

Prev by Date: Re: uscan and tag2upload
Next by Date: Re: MBF: Removal of GTK2 from forky
Previous by thread: Re: MBF: Removal of GTK2 from forky
Next by thread: Re: MBF: Removal of GTK2 from forky
Index(es):
- Date
- Thread