New Release

[FuzzyGophers]

Can you please roll a new release with all these security fixes?

[kv9y]

I second this request. I can't build 0.3.6 on my Debian Stretch machine because of " left operand of shift expression '(-1 << 31)' is negative [-fpermissive]" build error. Apparently this is fixed in 0.3.6-2 according to this: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812055

[kv9y]

Found a solution to my problem: ./configure CXXFLAGS='-fpermissive' This will remove the build error mentioned above.

[dvzrv]

Hi! I'm currently maintaining audiofile for Arch Linux and would also very much see a release of this software, to drop the many many patches ontop of version 0.3.6. Thank you!

[dvzrv]

@mpruett I've just checked and audiofile has accumulated a whopping 16(!) CVEs and it is completely unclear (judging from git log), whether any of them have actually been fixed.

Please do something about this! This library is used in many pieces of software and distributions. If you feel, you would not like to maintain it anymore, this would be the perfect time to find someone who would be willing to help!

[anthraxx]

There are pending pull requests like #42 to address lots of issues mentioned in the open issues that are all about those CVEs. While these are not applied, a new release isn't worth much. If @mpruett has no interest in audiofile anymore, maybe the folks at https://github.com/resurrecting-open-source-projects/ can take on the quest

[dvzrv]

@mpruett ping?

[kloczek]

+1

[nbenitez]

+1

[ciros88]

+1 @mpruett an answer will be appreciated