dtd-parser_1.2~svn20110404-1_amd64.changes ACCEPTED into unstable, unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Mon, 20 Jan 2014 16:36:18 +0100 Source: dtd-parser Binary: libdtd-parser-java libdtd-parser-java-doc Architecture: source all Version: 1.2~svn20110404-1 Distribution: unstable Urgency: low Maintainer: Debian Java Maintainers pkg-java-maintainers@lists.alioth.debian.org Changed-By: Timo Aaltonen tjaal...@ubuntu.com Description: libdtd-parser-java - Java library for parsing XML DTDs libdtd-parser-java-doc - Java library for parsing XML DTDs -- documentation Closes: 734054 Changes: dtd-parser (1.2~svn20110404-1) unstable; urgency=low . * Initial release (Closes: #734054) Checksums-Sha1: c1a3db29b5716a166806bea5f48f6cf9731d904a 2191 dtd-parser_1.2~svn20110404-1.dsc 56931297c59c4bb43b0511677718201f578d4d3a 59828 dtd-parser_1.2~svn20110404.orig.tar.xz a870f4edb273e0df9ea8358b4ed164fa6b6b9a23 9664 dtd-parser_1.2~svn20110404-1.debian.tar.xz b21dc32e76da2752f977cdda77929f11956d5e07 62500 libdtd-parser-java_1.2~svn20110404-1_all.deb 92e24614146f5bcdf9c452b6d824888d6fe03de6 141080 libdtd-parser-java-doc_1.2~svn20110404-1_all.deb Checksums-Sha256: 32107bb5f2bef167b4b01a6e6cacf9f6a32bb6ae999ccce1581622a7cdef5e47 2191 dtd-parser_1.2~svn20110404-1.dsc 17e1f54a861dbd8cc1123604006c90251be1cee5365eeb0529da01e5cf25d547 59828 dtd-parser_1.2~svn20110404.orig.tar.xz 9dbecff1cdb2640ba1b8605a7f63be13d81b799b53609698832c187343140f61 9664 dtd-parser_1.2~svn20110404-1.debian.tar.xz 7413bc316a14f05dfb84b5c9e1522be9acbda552acf1070c3537e86480160886 62500 libdtd-parser-java_1.2~svn20110404-1_all.deb 4e1c8f6dcd8a2f9ffe485c6cb8a6c55108c8ffdff22b5cf02b6157ce811862d7 141080 libdtd-parser-java-doc_1.2~svn20110404-1_all.deb Files: 4e67b9acf5f74c0bbd999ca734b6c3d3 2191 java optional dtd-parser_1.2~svn20110404-1.dsc dd35b839c72e74aa4db1eafb36a6c7ed 59828 java optional dtd-parser_1.2~svn20110404.orig.tar.xz 15e9002356d0c459d1796e83c3a2b9d7 9664 java optional dtd-parser_1.2~svn20110404-1.debian.tar.xz f7c1c3560fd21769c71a06673ec2d842 62500 java optional libdtd-parser-java_1.2~svn20110404-1_all.deb f71762f5cb275c644a0ed74c8673ed0e 141080 doc optional libdtd-parser-java-doc_1.2~svn20110404-1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (GNU/Linux) iQIcBAEBAgAGBQJS3UUUAAoJEN2M1aXejH56okoQAJ6da/UEUj8jGcrvE0j3HWin NQ33AElxCvVm99mT7eZaSxuP0NkprPjnSrHmcHuUN44DoJ8iBTXBHgEI20H2paxZ ZkFwgrXA3/z5eKJTk9+QDesDGS8WRe1A3WIyV8ibsY3rsJyHQzWnYaL58dZHZ552 qAPYXelfzPj8gZQ9YT/xdvtVkDyfqsOAEMRUf3Ns53v87IW5lmHNZxvr/AGxIBU1 6HNlez8yFEDhvzAPi13ZskVNo4UifTQPYWp2cfO5Vs3fjFiEmWa/vZaD9F/9lbCj bWKdqgquDXLgJy/XgGtxabGT/qTV8FlQ0JA8imKIlsYuW4X3nFx67fgv4/vbLuVN RDU2pgLoT1ZxlgrczNAXs+wUYvIFOQhwQunDeHyPQkLOXv6i4rPJqPWPZkL7WWWC PDMC5XLh+y2/aD/3hW75GVLp2sH5NV/MTuXpYN093rb4CWAwZ8IdWJxZH1M3wv9f zFwcYcbNOdSS2fycdMnHNvdFb0MPV4SoXznpQHsRd/wiFkVYqYXr0VYUaxvz/K0U bGwN8U4OP1zRakdwY4JAAh4iI/LLA+6t2NJ8UnUpKRzWo9Wk2z0qG/WSgeg25f51 1Q6cEFLzo+bQCc2XwwI7PgTxgRJvUGbHQV14WA+IvMG08J5tHdVWziIaRJH3pAVt b0+BK5MkDXu+/vISz5Em =bcyZ -END PGP SIGNATURE- Thank you for your contribution to Debian. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Processed: reuse this issue for the more general solution to use dh-autoreconf
Processing control commands:
retitle -1 jclassinfo: run dh-autoreconf to update config.{sub,guess} and
{libtool,aclocal}.m4
Bug #727905 [src:jclassinfo] jclassinfo: update config.{sub,guess} for the
AArch64 port
Changed Bug title to 'jclassinfo: run dh-autoreconf to update
config.{sub,guess} and {libtool,aclocal}.m4' from 'jclassinfo: update
config.{sub,guess} for the AArch64 port'
--
727905: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=727905
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
__
This is the maintainer address of Debian's Java team
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers.
Please use
debian-j...@lists.debian.org for discussions and questions.
Bug#727905: reuse this issue for the more general solution to use dh-autoreconf
Control: retitle -1 jclassinfo: run dh-autoreconf to update config.{sub,guess}
and {libtool,aclocal}.m4
Reusing this report for the more general solution to also update
the libtool.m4 and/or aclocal.m4 files, needed for the port mentioned
in bug #726404.
See https://wiki.debian.org/qa.debian.org/FTBFS for a guide how to
address these.
Please ignore this email if the libtool.m4/aclocal.m4 update is not
needed, and updating the config.{guess,sub} files is sufficient.
__
This is the maintainer address of Debian's Java team
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers.
Please use
debian-j...@lists.debian.org for discussions and questions.
Comments regarding relaxngcc_1.12-1_amd64.changes
Dear maintainer, While processing your upload of relaxngcc 1.12-1, I noticed the following things about the packaging: - The source tarball has been repacked, but this is not documented anywhere, and the only sign of it is the get-orig-targz target in debian/rules. Please document this in the debian/copyright file. Explaining why the repacking was done and what is removed would also be nice to see documented in debian/README.source, not just as comments in debian/rules. - src/relaxngcc/javabody/JavaBodyParser.jj does not appear to be under the Apache-1.1 license, but what exactly it is under, is unclear to me. This should be clarified. - There are a couple of files in the source that have comments like: /* this file is generated by RelaxNGCC */ Are these files rebuildable? (Sadly, my Java build system knowledge is not enough to determine this on my own) None of these warrant a reject, but I would like to see them clarified, if I'm to let the package through NEW. If you want to correct them, and reupload, instead of fixing them in a future version, that is also an option. I will reject the current version from NEW then, and you can reupload after. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#734599: libsnappy-java: Fails with FAILED_TO_LOAD_NATIVE_LIBRARY
Hi Alexandros, thanks for the patch to the problem report. I tried to apply this to the status of the corresponding Git repository git://git.debian.org/git/debian-med/snappy-java.git It seems you did not created the patch against this repository since it also contained an empty debian/patches/series file and a debian/source/format file. After dealing with some warnings the essential patch seems to be in debian/patches/jni.patch Unfortunately if I put this at the end of the series file it does not apply cleanly. Would you be so kind to rework your patch to apply cleanly with quilt? Your help is greatly appreciated since we simply have created the package as some precondition without the necessary solid Java background. Kind regards Andreas. -- http://fam-tille.de __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Processing of scannotation_1.0.2+svn20110812-1_amd64.changes
scannotation_1.0.2+svn20110812-1_amd64.changes uploaded successfully to localhost along with the files: scannotation_1.0.2+svn20110812-1.dsc scannotation_1.0.2+svn20110812.orig.tar.xz scannotation_1.0.2+svn20110812-1.debian.tar.xz libscannotation-java_1.0.2+svn20110812-1_all.deb Greetings, Your Debian queue daemon (running on host franck.debian.org) __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
jcodings 1.0.11-2 MIGRATED to testing
FYI: The status of the jcodings source package in Debian's testing distribution has changed. Previous version: 1.0.11-1 Current version: 1.0.11-2 -- This email is automatically generated once a day. As the installation of new packages into testing happens multiple times a day you will receive later changes on the next day. See http://release.debian.org/testing-watch/ for more information. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
scannotation_1.0.2+svn20110812-1_amd64.changes is NEW
binary:libscannotation-java is NEW. source:scannotation is NEW. Your package contains new components which requires manual editing of the override file. It is ok otherwise, so please be patient. New packages are usually added to the override file about once a week. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
jssc 2.6.0-2 MIGRATED to testing
FYI: The status of the jssc source package in Debian's testing distribution has changed. Previous version: 2.6.0-1 Current version: 2.6.0-2 -- This email is automatically generated once a day. As the installation of new packages into testing happens multiple times a day you will receive later changes on the next day. See http://release.debian.org/testing-watch/ for more information. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#736106: Sourceless file
hello Bastien, thanks for pointing this out. Can we keep the package (in main) until I fix this in Freeplane 1.3.x (will be released in a few months [1]), or do I need to fix it _right now_? [1] Then I would fix it cleanly and disable the Flash export upstream. Best Regards, -- Felix Natter __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#736106: Sourceless file
Felix Natter fnat...@gmx.net writes: hello Bastien, thanks for pointing this out. Can we keep the package (in main) until I fix this in Freeplane 1.3.x (will be released in a few months [1]), or do I need to fix it _right now_? [1] Then I would fix it cleanly and disable the Flash export upstream. I've talked to upstream and it turns out the source code is in another git repository: https://github.com/freeplane/misc/tree/master/flash-browser I see two solutions: 1. tell upstream to include the source (~300k) in all source packages 2. ZIP those files and include them as a Debian patch. (2) could easily be done for 1.2.23. Thanks and Best Regards, -- Felix Natter __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
libspring-java_3.0.6.RELEASE-6+deb7u1_amd64.changes ACCEPTED into proposed-updates-stable-new, proposed-updates
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Sun, 29 Dec 2013 13:21:19 +0100 Source: libspring-java Binary: libspring-core-java libspring-beans-java libspring-aop-java libspring-context-java libspring-context-support-java libspring-web-java libspring-web-servlet-java libspring-web-struts-java libspring-web-portlet-java libspring-test-java libspring-transaction-java libspring-jdbc-java libspring-jms-java libspring-orm-java libspring-expression-java libspring-oxm-java libspring-instrument-java Architecture: source all Version: 3.0.6.RELEASE-6+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Debian Java Maintainers pkg-java-maintainers@lists.alioth.debian.org Changed-By: Markus Koschany a...@gambaru.de Description: libspring-aop-java - modular Java/J2EE application framework - AOP libspring-beans-java - modular Java/J2EE application framework - Beans libspring-context-java - modular Java/J2EE application framework - Context libspring-context-support-java - modular Java/J2EE application framework - Context Support libspring-core-java - modular Java/J2EE application framework - Core libspring-expression-java - modular Java/J2EE application framework - Expression language libspring-instrument-java - modular Java/J2EE application framework - Instrumentation libspring-jdbc-java - modular Java/J2EE application framework - JDBC tools libspring-jms-java - modular Java/J2EE application framework - JMS tools libspring-orm-java - modular Java/J2EE application framework - ORM tools libspring-oxm-java - modular Java/J2EE application framework - Object/XML Mapping libspring-test-java - modular Java/J2EE application framework - Test helpers libspring-transaction-java - modular Java/J2EE application framework - transaction libspring-web-java - modular Java/J2EE application framework - Web libspring-web-portlet-java - modular Java/J2EE application framework - Portlet MVC libspring-web-servlet-java - modular Java/J2EE application framework - Web Portlet libspring-web-struts-java - modular Java/J2EE application framework - Struts MVC Closes: 720902 Changes: libspring-java (3.0.6.RELEASE-6+deb7u1) wheezy-security; urgency=high . * Team upload. * Fix CVE-2013-4152. - New patch: Add-processExternalEntities-to-JAXB2Marshaller.patch. - Now by default external XML entities are not processed when unmarshalling. Processing of external entities will only be enabled/disabled when the source passed to the unmarshaller is a SAXSource or StreamSource. It has no effect for DOMSource or StAXSource instances. - (Closes: #720902) Checksums-Sha1: 5eb3cb9b3967547e1c91a5188fe60b5c68777147 4567 libspring-java_3.0.6.RELEASE-6+deb7u1.dsc 54681c810cb8d918b54ab430441958a84c6440a9 11192531 libspring-java_3.0.6.RELEASE.orig.tar.gz e9f00f61c780d0029f0f36319d2d7d89e19523a9 19505 libspring-java_3.0.6.RELEASE-6+deb7u1.debian.tar.gz ed262b6393f1dadf65738e00689e86069b2f8e01 364098 libspring-core-java_3.0.6.RELEASE-6+deb7u1_all.deb 9ef33c4b2761903115c632f070d7dd00fda56202 520022 libspring-beans-java_3.0.6.RELEASE-6+deb7u1_all.deb f7f4c79f1abe718d1b57e4c2b8710dbc6c1bcafc 331176 libspring-aop-java_3.0.6.RELEASE-6+deb7u1_all.deb 8814a5471a4292688444b40a018b4d003f69931a 599282 libspring-context-java_3.0.6.RELEASE-6+deb7u1_all.deb c152f1eb506554f3bfc3fd1949256c8b25b6b3da 113508 libspring-context-support-java_3.0.6.RELEASE-6+deb7u1_all.deb 942815c2587812fd206f8a24b3f0bee3a1cef12f 371872 libspring-web-java_3.0.6.RELEASE-6+deb7u1_all.deb fea9171dd5e112b403343581673f53e5a35ca2aa 398860 libspring-web-servlet-java_3.0.6.RELEASE-6+deb7u1_all.deb f3436a33013a243bbce0f13d468e60867533e3fa 51440 libspring-web-struts-java_3.0.6.RELEASE-6+deb7u1_all.deb 44c34d168117273543fb00f656bf7afb078c9dac 180086 libspring-web-portlet-java_3.0.6.RELEASE-6+deb7u1_all.deb a139834d86dd0f4355c608dbe73f332744b96381 204994 libspring-test-java_3.0.6.RELEASE-6+deb7u1_all.deb 9942e4c9f651a019e1d342d2e746fe6c97af57b6 214106 libspring-transaction-java_3.0.6.RELEASE-6+deb7u1_all.deb d614faedd37916e66574f87d799458c5444592a1 358828 libspring-jdbc-java_3.0.6.RELEASE-6+deb7u1_all.deb 889148c9a97dc529e0975cfa315accadfb292c3a 186862 libspring-jms-java_3.0.6.RELEASE-6+deb7u1_all.deb 7ecf4f44de0f5c2409e81ead9f5d144d12085378 317706 libspring-orm-java_3.0.6.RELEASE-6+deb7u1_all.deb 85fcfec606316db10a31f6c58a14bd06a59c6256 176482 libspring-expression-java_3.0.6.RELEASE-6+deb7u1_all.deb 294e24ad0b09a48f3062289baaf43baa1b54f899 77884 libspring-oxm-java_3.0.6.RELEASE-6+deb7u1_all.deb 65da8b54ad30af91ae85b91cb184439866dd4369 29860 libspring-instrument-java_3.0.6.RELEASE-6+deb7u1_all.deb Checksums-Sha256: 483d48115a550f6a75b054269240c2cb110df3bf544a7a7f10163f8081d05d4f 4567 libspring-java_3.0.6.RELEASE-6+deb7u1.dsc 694c3efc4b4b0730c596b90a14a8e14e1a5d5be065f38a35c3e2e86c50dab04f 11192531 libspring-java_3.0.6.RELEASE.orig.tar.gz
Bug#720902: marked as done (libspring-java: CVE-2013-4152)
Your message dated Tue, 21 Jan 2014 21:17:29 + with message-id e1w5ihn-0001hw...@franck.debian.org and subject line Bug#720902: fixed in libspring-java 3.0.6.RELEASE-6+deb7u1 has caused the Debian Bug report #720902, regarding libspring-java: CVE-2013-4152 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 720902: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=720902 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: libspring-java Severity: grave Tags: security Justification: user security hole Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4152 for details. Cheers, Moritz ---End Message--- ---BeginMessage--- Source: libspring-java Source-Version: 3.0.6.RELEASE-6+deb7u1 We believe that the bug you reported is fixed in the latest version of libspring-java, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 720...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Markus Koschany a...@gambaru.de (supplier of updated libspring-java package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Sun, 29 Dec 2013 13:21:19 +0100 Source: libspring-java Binary: libspring-core-java libspring-beans-java libspring-aop-java libspring-context-java libspring-context-support-java libspring-web-java libspring-web-servlet-java libspring-web-struts-java libspring-web-portlet-java libspring-test-java libspring-transaction-java libspring-jdbc-java libspring-jms-java libspring-orm-java libspring-expression-java libspring-oxm-java libspring-instrument-java Architecture: source all Version: 3.0.6.RELEASE-6+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Debian Java Maintainers pkg-java-maintainers@lists.alioth.debian.org Changed-By: Markus Koschany a...@gambaru.de Description: libspring-aop-java - modular Java/J2EE application framework - AOP libspring-beans-java - modular Java/J2EE application framework - Beans libspring-context-java - modular Java/J2EE application framework - Context libspring-context-support-java - modular Java/J2EE application framework - Context Support libspring-core-java - modular Java/J2EE application framework - Core libspring-expression-java - modular Java/J2EE application framework - Expression language libspring-instrument-java - modular Java/J2EE application framework - Instrumentation libspring-jdbc-java - modular Java/J2EE application framework - JDBC tools libspring-jms-java - modular Java/J2EE application framework - JMS tools libspring-orm-java - modular Java/J2EE application framework - ORM tools libspring-oxm-java - modular Java/J2EE application framework - Object/XML Mapping libspring-test-java - modular Java/J2EE application framework - Test helpers libspring-transaction-java - modular Java/J2EE application framework - transaction libspring-web-java - modular Java/J2EE application framework - Web libspring-web-portlet-java - modular Java/J2EE application framework - Portlet MVC libspring-web-servlet-java - modular Java/J2EE application framework - Web Portlet libspring-web-struts-java - modular Java/J2EE application framework - Struts MVC Closes: 720902 Changes: libspring-java (3.0.6.RELEASE-6+deb7u1) wheezy-security; urgency=high . * Team upload. * Fix CVE-2013-4152. - New patch: Add-processExternalEntities-to-JAXB2Marshaller.patch. - Now by default external XML entities are not processed when unmarshalling. Processing of external entities will only be enabled/disabled when the source passed to the unmarshaller is a SAXSource or StreamSource. It has no effect for DOMSource or StAXSource instances. - (Closes: #720902) Checksums-Sha1: 5eb3cb9b3967547e1c91a5188fe60b5c68777147 4567 libspring-java_3.0.6.RELEASE-6+deb7u1.dsc 54681c810cb8d918b54ab430441958a84c6440a9 11192531 libspring-java_3.0.6.RELEASE.orig.tar.gz e9f00f61c780d0029f0f36319d2d7d89e19523a9 19505 libspring-java_3.0.6.RELEASE-6+deb7u1.debian.tar.gz ed262b6393f1dadf65738e00689e86069b2f8e01 364098 libspring-core-java_3.0.6.RELEASE-6+deb7u1_all.deb 9ef33c4b2761903115c632f070d7dd00fda56202 520022
Bug#736106: Sourceless file
Hi, Why not 3. Create a separate package with a recommend/suggest relation between both? Eric Felix Natter fnat...@gmx.net wrote: Felix Natter fnat...@gmx.net writes: hello Bastien, thanks for pointing this out. Can we keep the package (in main) until I fix this in Freeplane 1.3.x (will be released in a few months [1]), or do I need to fix it _right now_? [1] Then I would fix it cleanly and disable the Flash export upstream. I've talked to upstream and it turns out the source code is in another git repository: https://github.com/freeplane/misc/tree/master/flash-browser I see two solutions: 1. tell upstream to include the source (~300k) in all source packages 2. ZIP those files and include them as a Debian patch. (2) could easily be done for 1.2.23. Thanks and Best Regards, -- Felix Natter __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions. -- Sent from my tablet. Please excuse my brevity.__ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#736295: libjackson-json-java-doc: unhandled symlink to directory conversion: /usr/share/doc/PACKAGE
Package: libjackson-json-java-doc Version: 1.9.2-2 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, an upgrade test with piuparts revealed that your package installs files over existing symlinks and possibly overwrites files owned by other packages. This usually means an old version of the package shipped a symlink but that was later replaced by a real (and non-empty) directory. This kind of overwriting another package's files cannot be detected by dpkg. This was observed on the following upgrade paths: jessie - sid For /usr/share/doc/PACKAGE this may not be problematic as long as both packages are installed, ship byte-for-byte identical files and are upgraded in lockstep. But once one of the involved packages gets removed, the other one will lose its documentation files, too, including the copyright file, which is a violation of Policy 12.5: http://www.debian.org/doc/debian-policy/ch-docs.html#s-copyrightfile For other overwritten locations anything interesting may happen. Note that dpkg intentionally does not replace directories with symlinks and vice versa, you need the maintainer scripts to do this. See in particular the end of point 4 in http://www.debian.org/doc/debian-policy/ch-maintainerscripts.html#s-unpackphase It is recommended to use the dpkg-maintscript-helper commands 'dir_to_symlink' and 'symlink_to_dir' (available since dpkg 1.17.2) to perform the conversion, ideally using d/$PACKAGE.mainstscript. See dpkg-maintscript-helper(1) and dh_installdeb(1) for details. From the attached log (usually somewhere in the middle...): 0m41.4s ERROR: FAIL: silently overwrites files via directory symlinks: /usr/share/doc/libjackson-json-java-doc/changelog.Debian.gz (libjackson-json-java-doc) != /usr/share/doc/libjackson-json-java/changelog.Debian.gz (libjackson-json-java) /usr/share/doc/libjackson-json-java-doc/copyright (libjackson-json-java-doc) != /usr/share/doc/libjackson-json-java/copyright (libjackson-json-java) cheers, Andreas libjackson-json-java-doc_1.9.2-2.log.gz Description: GNU Zip compressed data __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Processing of plexus-compiler_1.9.2-2_amd64.changes
plexus-compiler_1.9.2-2_amd64.changes uploaded successfully to localhost along with the files: plexus-compiler_1.9.2-2.dsc plexus-compiler_1.9.2-2.debian.tar.xz libplexus-compiler-java_1.9.2-2_all.deb libplexus-compiler-java-doc_1.9.2-2_all.deb libplexus-compiler-api-java_1.9.2-2_all.deb libplexus-compiler-manager-java_1.9.2-2_all.deb libplexus-compiler-javac-java_1.9.2-2_all.deb Greetings, Your Debian queue daemon (running on host franck.debian.org) __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
plexus-compiler_1.9.2-2_amd64.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 21 Jan 2014 11:09:39 +0100 Source: plexus-compiler Binary: libplexus-compiler-java libplexus-compiler-java-doc libplexus-compiler-api-java libplexus-compiler-manager-java libplexus-compiler-javac-java Architecture: source all Version: 1.9.2-2 Distribution: unstable Urgency: medium Maintainer: Debian Java Maintainers pkg-java-maintainers@lists.alioth.debian.org Changed-By: Emmanuel Bourg ebo...@apache.org Description: libplexus-compiler-api-java - API for the Plexus compiler system (dummy package) libplexus-compiler-java - Plexus compiler system libplexus-compiler-java-doc - Documentation for The API for the Plexus compiler system libplexus-compiler-javac-java - javac plugin for the Plexus compiler system (dummy package) libplexus-compiler-manager-java - manager for the Plexus compiler system (dummy package) Changes: plexus-compiler (1.9.2-2) unstable; urgency=medium . * Team upload. * Added a patch to set the missing versions of the dependencies in the poms Checksums-Sha1: 2089c9853b7799799205f4e0934f60199f5b5322 2731 plexus-compiler_1.9.2-2.dsc 2c204d629ff2e7ffb52302c60ccfc0a9fbe9ecab 7292 plexus-compiler_1.9.2-2.debian.tar.xz d07d0cfe420869a4b9b51db26c4414578e9f54b6 76264 libplexus-compiler-java_1.9.2-2_all.deb 58d64726a06ccc1b1d65fc26ad8350df7cfe2738 59644 libplexus-compiler-java-doc_1.9.2-2_all.deb 741bd72de9fa585948511dfc5c3bbe2692519e9e 3650 libplexus-compiler-api-java_1.9.2-2_all.deb f36c3cfcdbc350778d46112ca5eb74cbc0533311 3656 libplexus-compiler-manager-java_1.9.2-2_all.deb a32c0cd5b4f0e91b14b4ca223d54556a24e636b6 3648 libplexus-compiler-javac-java_1.9.2-2_all.deb Checksums-Sha256: 028ceabf01fba5a25b78b63edbb949c06d2bb1c0d6112082524be27b45d3d090 2731 plexus-compiler_1.9.2-2.dsc 880ca5f8e5b3a84bf555c5c2fbf5aecfe98d40169872e29e0bdd5101ee718eba 7292 plexus-compiler_1.9.2-2.debian.tar.xz 51921bf9afd1dac10f7a15f079678aff1738e8df5817398dbfe34d40de5b2aea 76264 libplexus-compiler-java_1.9.2-2_all.deb 27693c3e7c874a731c0fdf72caaa5c32c0fb09ba5ea4651de2bf7ce1f57c4fab 59644 libplexus-compiler-java-doc_1.9.2-2_all.deb 357238de4191c11d015b875fc8f65499cb18431daf3c0b637f1a1ebacbd96fe3 3650 libplexus-compiler-api-java_1.9.2-2_all.deb fc48c0edf323b00ea13e0bcc58d97028e226d9cb7aba89bfcef5d9045a6ded63 3656 libplexus-compiler-manager-java_1.9.2-2_all.deb 075045c99647b23b91bc5a62c23eb37da2a9e02b9ef19c0e06714b8f9c7a269c 3648 libplexus-compiler-javac-java_1.9.2-2_all.deb Files: 0297b141a12ebeb3626e2c1c169c72eb 2731 java optional plexus-compiler_1.9.2-2.dsc dac43787c713f1f2e791b3ab9969058c 7292 java optional plexus-compiler_1.9.2-2.debian.tar.xz a65cd0edc3eb0f8a0443f340d1c253a9 76264 java optional libplexus-compiler-java_1.9.2-2_all.deb a0241b703531a79ef5163cc6fe4ba63d 59644 doc optional libplexus-compiler-java-doc_1.9.2-2_all.deb 6efaaa1e9dba2e48db9e1749aa941546 3650 java optional libplexus-compiler-api-java_1.9.2-2_all.deb 71849b68afeac80b086e656b5e3f3282 3656 java optional libplexus-compiler-manager-java_1.9.2-2_all.deb d79fd96b32f31602b2d67dd43a00ad4c 3648 java optional libplexus-compiler-javac-java_1.9.2-2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJS31zGAAoJECHSBYmXSz6WWV8QAI2ZcN57+Ci/U4pSESe2mGZx WCqw8neDao9GC5p/0WV0QQu6cbCGBbC7LKP93lm4oL9fsoEYPNJwx6HXZwYyCG9M SWOCFi0JW7wOCN9kajovj09wWn+7Sz2x7HUADzFXk+WoyDHqEapP7783pFpb30bx dJiOsO7yl+B+tAC82hhqTZ2QKM3LbLRbsNcSV487myCQLj6QTurG0HWGPsxYGAwa W/q4PwLWhKUf1ae1n1qhdazOhnc/IHjRy77xep/+oW4w5PreT6nQg/bB2n40Nr0m QJDTXbR+0U7ARAFcu61M7DdjlfWaX5H6503iJtIi7LloV4NVJFFBt6qyYiSZMOfz VNoyCymsElWhjvcvUsEJzeV4N34IXuCmxZLmEpLnRNlChmSsghrokFoYUV8uTcOd qH6Xqi5M9WqI8fNuunqe0K+txG7vwOwWPUmEu4UPq/OB8EUV6mD5TCpLTcExonmd juKYZpZc7GIhmTswlF6z/7P8dWG8TnQfufJxnxr77hwVXE+ir5so/ugqgMcDhpxn mN8ZAq9XxPE3FAA88zVkvK5ZW/bPmj4ZfVK9TwMsUeOceTakyEwjZVkPlUDLYz78 6bmxptsQHuzrQ5GGi/xQF1138It2S357euIkt/xx/FP/gtY7T2E7O9SZdL3NtoNJ 6+VmP4FqnafqVzisujum =i4kZ -END PGP SIGNATURE- Thank you for your contribution to Debian. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
