Bug#998676: RM: chromium/93.0.4577.82-1

[Salvatore Bonaccorso <carnil@debian.org>]

Hi Bastian, hi Simon,

On Sun, Nov 07, 2021 at 10:47:43AM +0100, Bastian Blank wrote:
> Control: clone -1 -2
> Control: reassign -2 ftp.debian.org
> Control: reopen -2
> Control: retitle -2 RM: chromium -- RoQA; unmaintained
> 
> On Sat, Nov 06, 2021 at 08:03:49AM +0100, Salvatore Bonaccorso wrote:
> > Chromium with his recurring stream of security issues is currently as
> > well for bookworm/unstable with around 47 open CVEs. For
> > stable/oldstable it's even more since there hasn't been an update for
> > half a year.
> > Within the security team we are considering to announce the end of
> > security support for chromium for buster and bullseye. People can e.g.
> > transition to using Chromium from Flathub.
> 
> Where can we find this discussion?  Esp as I can't find a single peep by
> the current maintainer team, who also did the security updates in the
> past AFAIK.

It was in (several) team discussions but not on public list or bug.
Right now we are giving a false impression of support, and chromium in
stable is lacking too much behind with open issues. chromium has
almost a bi-weekly release cadence, and in some cases a weekly
releases to address security issues which we miss in both unstable
(and so testing), but as well in stable and oldstable.

Simon, thanks a lot for the comments on flatpak. That was a potential
idea to have a solution out for users if we need to go and announce
the end of support for chromium in stable and oldstable. So your input
here was more than apreciated.

The retun of chromium in testing and so possibly bookworm is not at
all expcluded, but then the current situation would need to be
addressed.

Regards,
Salvatore