Bug#1016720: RFS: analog/2:6.0.17-2 [ITA] -- web server log analyzer

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "analog": * Package name: analog Version : 2:6.0.17-2 Upstream Author : [fill in name and email of upstream] * URL : https://www.c-amie.co.uk/software/analog *

Bug#1016695: po4a: Strange behaviour with repeated strings (in halibut backend)

Hello Martin, thanks for your speedy reply. Especially when asking things related to sgt-puzzles, please keep Ben in CC:. On Sat, Aug 06, 2022 at 12:23:48AM +0200, Martin Quinson wrote: > the short answer is that po4a-gettextize is not intended to be used on a > regular > basis. It's only

Bug#1014732: logrotate: daily mail “error: state file /var/lib/logrotate/status is world-readable and thus…”

Dixi quod… >I got a new version of logrotate on multiple systems due to the >security/point release, and since then I get, every night, from >all of them, this: After a while, I can now say it’s only once for every system, but I had upgraded several in waves and over nights, so the eMails spread

Bug#1016719: dask: test_query_with_meta fails on 32 bit arches

Source: dask Version: 2022.02.0+dfsg-1 Severity: normal Control: forwarded -1 https://github.com/dask/dask/issues/8620 dask 2022.02.0 is failing two CI tests on 32 bit arches (armhf, i386), one in test_query_with_meta, the other in test_categorize_info The test_query_with_meta error is reported

Bug#949248: Charity Donation

Hi, My name is MacKenzie Scott Tuttle; I'm a philanthropist and founder of one of the largest private foundations in the world. I'm on a mission to give it all away as I believe in ‘giving while living.’ I always had the idea that never changed in my mind — that wealth should be used to help

Bug#1008578: buster-pu: golang-github-russellhaering-goxmldsig/0.0~git20170911.b7efc62-1+deb10u1

On Fri, 5 Aug 2022, Adam D. Barratt wrote: Please go ahead. ... and uploaded. Thanks! Thorsten

Bug#1009076: buster-pu: minidlna/1.2.1+dfsg-2+deb10u3

On Fri, 5 Aug 2022, Adam D. Barratt wrote: Please go ahead; sorry for the delay. ... and uploaded. Thanks! Thorsten

Bug#1009251: buster-pu: fribidi/1.0.5-3.1+deb10u2

On Fri, 5 Aug 2022, Adam D. Barratt wrote: Please go ahead; sorry for the delay. ... and uploaded. Thanks! Thorsten

Bug#1010380: buster-pu: flac/1.3.2-3+deb10u2

On Fri, 5 Aug 2022, Adam D. Barratt wrote: Please go ahead; sorry for the delay. ... and uploaded. Thanks! Thorsten

Bug#1016718: binfmt_elf: May fail to load executable with no static data next to BSS

Source: linux Version: 5.19-1~exp1 Severity: normal Tags: upstream I'm doing some test builds of klibc and found a regression for arm64. What changed is binutils, and I've reported bug #1016717 there, but it seems to be triggering an existing

Bug#1016695: po4a: Strange behaviour with repeated strings (in halibut backend)

Hello, the short answer is that po4a-gettextize is not intended to be used on a regular basis. It's only intended for the first run when you want to convert an existing translation to the po-based workflow. Once it's done, you're supposed to use po4a-updatepo to create an empty PO file. Even

Bug#1016455: cryptsetup-initramfs: fix for #902943 breaks image building use case

Hi Sean, On Sun, 31 Jul 2022 at 13:45:29 -0700, Sean Whitton wrote: > So, the PARTUUID= source is being mapped to a /dev/mapper source, which > I think is the work of the fix for #902943. It's the same for UUID=. > > The problem is that /dev/mapper/loop0p2 is valid only on the > image-building

Bug#1010708: cryptsetup: init script doesn't appear to do anything with force-start due to masked systemd services

Control: severity -1 minor On Sat, 07 May 2022 at 17:40:34 -0400, Andres Salomon wrote: > Calling the init script with 'force-start' was how I used to start the > volume and get prompted for a password, but on a newer system with > systemd, that doesn't _appear_ to work any more: The init

Bug#1016715: modem-manager-gui: Assertion when XDG_CURRENT_DESKTOP is not set

Package: modem-manager-gui Version: 0.0.20 Severity: minor Tags: patch upstream Dear Maintainer, for some reason, my system using i3wm does not have XDG_CURRENT_DESKTOP set. This leads to a critical assertion when starting modem-manager-gui. While this is no problem because the program still

Bug#960396: web security flaws in src:adminer/4.7.1-1 in stable?

Control: tags -1 + confirmed On Fri, 2022-08-05 at 22:23 +0200, Alexandre Rossi wrote: > Hi, > > > > > Thanks. Can you attach the debdiff between the current version > > > > in > > > > buster and the proposed one to this bug? > > > > > > Here it is. > > > > > > > Apologies for letting this

Bug#1016586: bpftool: Dump of jited version of the BPF program requires libbfd support

Control: tag -1 wontfix On Wed, 2022-08-03 at 18:01 +0200, Emmanuel Fleury wrote: [...] > I suppose that the support for BPF must be add to libbfd in the binutils-dev > package by default. > > Feel free to ask for more details if I was not clear in my report. We don't and can't link with

Bug#1016714: arch-install-scripts: Include pacstrap in arch-install-scripts since pacman is now in Debian

Hello, On 8/5/22 16:39, Unit 193 wrote: Yep, that's the plan.  I was waiting on pacman-package-manager to pass NEW before I did the changes, so I haven't picked up the new version yet. Perfect. It just passed NEW about three hours ago, so it's not on many mirrors yet. A source-only reupload

Bug#1016714: arch-install-scripts: Include pacstrap in arch-install-scripts since pacman is now in Debian

Howdy, On Fri, 5 Aug 2022, Ben Westover wrote: Dear Maintainer, pacstrap is currently not included in the arch-install-scripts package for Debian, which makes sense since it uses pacman. However, pacman as of today is in Debian as the package pacman-package-manager, so now it should be

Bug#960396: web security flaws in src:adminer/4.7.1-1 in stable?

Hi, > > > Thanks. Can you attach the debdiff between the current version in > > > buster and the proposed one to this bug? > > > > Here it is. > > > > Apologies for letting this sit for so long without a follow-up. No worries. > We're in the process of arranging the final point release for

Bug#1016708: thunderbird: Thunderbird 102 doesn't recognize installed hunspell and myspell dictionaries

Hello Michael, Am 05.08.22 um 21:14 schrieb Michael Meier: I've just installed Thunderbird 102. Now it doesn't recognize anymore the installed hunspell and myspell dictionaries for spellchecking. If they aren't supported anymore by thunderbird, then they should be removed from the recommended

Bug#1016714: arch-install-scripts: Include pacstrap in arch-install-scripts since pacman is now in Debian

Package: arch-install-scripts X-Debbugs-Cc: kwestover...@gmail.com Version: 25-1 Severity: minor Dear Maintainer, pacstrap is currently not included in the arch-install-scripts package for Debian, which makes sense since it uses pacman. However, pacman as of today is in Debian as the package

Bug#1006182: buster-pu: package qtbase-opensource-src/5.11.3+dfsg1-1+deb10u5

Control: tags -1 + confirmed On Sat, 2022-03-26 at 10:20 +0300, Dmitry Shachnev wrote: > Hi all, and sorry for delay. > > On Fri, Mar 18, 2022 at 12:34:33PM +0100, Emilio Pozuelo Monfort > wrote: > > On 18/03/2022 12:28, Adam D. Barratt wrote: > > > On Fri, 2022-03-18 at 12:24 +0100, Emilio

Bug#1006550: buster-pu: package tiff/4.1.0+git191117-2~deb10u4

On Sat, 2022-03-19 at 16:43 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Sun, 2022-02-27 at 18:01 +0100, László Böszörményi wrote: > > A security update of tiff for issues not warrant a DSA but still > > would > > be good to have fixed. > > > > Please go ahead; thanks.

Bug#999430: buster-pu: package publicsuffix/20211109.1735-0+deb10u1

On Mon, 2021-11-29 at 20:45 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Wed, 2021-11-10 at 16:31 -0500, Daniel Kahn Gillmor wrote: > > Please consider an update to publicsuffix in debian buster. > > > > This package reflects the state of the network, and keeping it > >

Bug#998390: buster-pu: package ruby-activeldap/5.2.2-2+deb10u1

On Sat, 2022-03-19 at 16:37 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Wed, 2021-11-03 at 15:19 +0100, Daniel Leidert wrote: > > There is an open bug report about ruby-activeldap missing a > > dependency on > > ruby-builder. This issue is only present in Buster and the

Bug#995905: Packaged version of opencolorio 2.1.2

I have packaged opencolor 2.1.2 and built it successfully in a PPA. https://launchpad.net/~jawn-smith/+archive/ubuntu/devel-proposed/+packages In order to fix the docs built I had to override the PYTHONPATH variable manually rather than relying on the cmake module. This had to do with how the

Bug#991628: buster-pu: package pillow/5.4.1-2+deb10u2

On Sat, 2021-12-04 at 17:49 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Thu, 2021-07-29 at 09:54 +0100, Neil Williams wrote: > > Fix for CVE-2021-34552 (#991293) is mitigated by FORTIFY_SOURCE, so > > this upload targets proposed-updates instead of security after > >

Bug#990739: buster-pu: package iptables-netflow/2.3-5+deb10u1

On Sat, 2021-12-04 at 17:55 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Tue, 2021-07-06 at 02:45 +0200, Axel Beckert wrote: > > an API change in the Linux kernel 4.19.194-1 uploaded with the > > Buster > > 10.10 stable minor update caused a regression in > >

Bug#952960: buster-pu: package ruby-factory-girl-rails/4.7.0-1+deb10u1

On Tue, 2020-03-03 at 19:03 +, Adam D. Barratt wrote: > Control: tags -1 +confirmed -moreinfo > > On Mon, 2020-03-02 at 18:59 +0100, Daniel Leidert wrote: > > Package: release.debian.org > > Followup-For: Bug #952960 > > > > I've uploaded the fix to unstable and updated the diff (Vcs* fields

Bug#990372: buster-pu: package feature-check/0.2.2-3

On Sun, 2021-07-18 at 18:32 +0100, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Sun, 2021-06-27 at 18:10 +0300, Peter Pentchev wrote: > > This is a pre-approval request for feature-check/0.2.2-3+deb10u1 to > > fix the #990276 RC bug already fixed in unstable. > > > > [ Reason ] >

Bug#945578: buster-pu: package libapache2-mod-auth-openidc/2.3.10.2-1

On Fri, 2021-03-26 at 09:22 +0100, Salvatore Bonaccorso wrote: > Hi Moritz, > > On Fri, Jul 31, 2020 at 10:25:13AM +0200, Salvatore Bonaccorso wrote: > > Hi Moritz, > > > > On Tue, Jan 28, 2020 at 10:43:25PM +, Adam D. Barratt wrote: > > > Control: tags -1 + confirmed > > > > > > On Wed,

Bug#942464: Fwd: Re: Bug#941626: Bug#942464: buster-pu: package haveged/1.9.1-7

On Wed, 2019-11-06 at 12:02 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > Control: tags 941626 - confirmed > > Apparently I copied the wrong side of the clone... Ping? We're in the process of organising the final point release for buster, as support for it transitions over to

Bug#1016712: RM: gfbgraph -- RoM; unmaintained, uses old libsoup2.4

Package: ftp.debian.org X-Debbugs-CC: gfbgr...@packages.debian.org gfbgraph needs to be ported to the new librest 1.0 API and libsoup3. GNOME stopped using gfbgraph because of this issue so this library has no reverse dependencies and doesn't really have an upstream maintainer. Thank you,

Bug#977028: buster-pu: package sane-backends/1.0.27-3.2

On Sat, 2021-01-16 at 18:08 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Thu, 2020-12-10 at 09:44 +0100, Jörg Frings-Fürst wrote: > > The udev rule to change the owner/group of usb scanners are not > > included. > > > > [ Impact ] > > Scanner working only as root > > > >

Bug#987941: buster-pu: package pacemaker/2.0.1-5+deb10u2

Control: tags -1 + confirmed On Thu, 2021-06-10 at 22:09 +0200, wf...@niif.hu wrote: > On Wed, 09 Jun 2021 09:17:26 +0200 wf...@niif.hu wrote: > > > Andreas kindly provided further refinements for his patch in > > #985173. > > I'll update this stable update request with the new debdiff > >

Bug#987729: inetutils-telnet: provide upgrade path for orphan netkit-telnet

Hi Simon! On Fri, 2022-07-08 at 20:40:01 +0200, Simon Josefsson wrote: > Guillem Jover writes: > > We'd need to send a mail to debian-devel, announcing the transition, > > to check whether there's any objection. I can prepare something during > > the weekend. Which I did, and there didn't seem

Bug#1016711: libthrust: flaky autopkgtest

Source: libthrust Version: 1.16.0-1 Severity: normal -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Dear maintainer, the autopkgtest suite on amd64 has spurious timeouts: https://ci.debian.net/data/autopkgtest/testing/amd64/libt/libthrust/24362266/log.gz > autopkgtest [12:57:19]:

Bug#1016710: zlib: CVE-2022-37434

Source: zlib Version: 1:1.2.11.dfsg-4 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Control: found -1 1:1.2.11.dfsg-1 Control: found -1 1:1.2.11.dfsg-2+deb11u1 Hi, The following vulnerability was published for zlib. CVE-2022-37434[0]: | zlib

Bug#960396: web security flaws in src:adminer/4.7.1-1 in stable?

On Wed, 2021-05-26 at 11:20 +0200, Alexandre Rossi wrote: > Hi, > > > Thanks. Can you attach the debdiff between the current version in > > buster and the proposed one to this bug? > > Here it is. > Apologies for letting this sit for so long without a follow-up. We're in the process of

Bug#964176: buster-pu: package gajim/1.1.3-2+deb10u1

On Fri, 2020-07-03 at 09:12 +0200, Martin wrote: > I like to update gajim to the latest 1.1.x stable release in > buster, while bullseye will move to 1.2.x. > > 1.1.3-2 has been been in testing for nearly one year and has not > shown any regressions compared to the current version in stable, >

Bug#1016709: pd-lib-builder: provide a dh-sequence-pdlibbuilder

Source: pd-lib-builder Version: 0.6.0-1 Severity: wishlist Many pd-externals use pd-lib-builder, and the d/rules look all very similar. It would be great if we could use dh to remove the duplicate work. 1. check if the make-based build system actually uses Makefile.pdlibbuilder 2. add

Bug#988850: buster-pu: package thunar/1.8.17-1

On Thu, 2021-05-20 at 15:25 +0200, Yves-Alexis Perez wrote: > this is a pre-approval request for updating Thunar in stable, from > 1.8.4 > to 1.8.17. > > The context is the recently found vulnerability CVE-2021-32563 > (#988394), which has been fixed in 1.8.17. > > With my security team hat on,

Bug#941158: Taking over ownership of ITP

Control: owner -1 ! As discussed by personal mail, I will take over this. Cheers Ole

Bug#1010060: buster-pu: package mutt/1.10.1-2.1+deb10u6

Hi Adam, On Fri, Aug 05, 2022 at 07:40:39PM +0100, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Sat, 2022-04-23 at 15:04 +0200, Salvatore Bonaccorso wrote: > > I prepared an update for mutt, fixing CVE-2022-1328, a buffer- > > overflow > > in uudecoder. > > > > Please go ahead;

Bug#1016708: thunderbird: Thunderbird 102 doesn't recognize installed hunspell and myspell dictionaries

Package: thunderbird Version: 1:102.1.0-1 Severity: normal X-Debbugs-Cc: schissdra...@rmm.li I've just installed Thunderbird 102. Now it doesn't recognize anymore the installed hunspell and myspell dictionaries for spellchecking. If they aren't supported anymore by thunderbird, then they should

Bug#1008578: buster-pu: golang-github-russellhaering-goxmldsig/0.0~git20170911.b7efc62-1+deb10u1

Control: tags -1 + confirmed On Mon, 2022-03-28 at 21:50 +, Thorsten Alteholz wrote: > The attached debdiff for golang-github-russellhaering-goxmldsig > fixes > CVE-2020-7711 in Buster. This CVE has been marked as no-dsa by the > security team. > Please go ahead. Regards, Adam

Bug#987039: buster-pu: package dojo/1.14.2+dfsg1-1+deb10u3

On Fri, 2021-04-16 at 09:49 +0200, Yadd wrote: > dojo/dijit is vulnerable to cross-site-scripting (#97, > CVE-2020-4051). > Apologies for not getting back to this sooner. [...] > This update should minimally affect production applications: > * The behavior of existing links with HTML

Bug#987538: buster-pu: package node-end-of-stream/1.4.1-1+deb10u1

Control: tags -1 + confirmed On Sun, 2021-04-25 at 12:02 +0200, Yadd wrote: > node-end-of-stream test is RC-buggy. This little patch workaround > this > bug which seems not related to node-end-of-stream itself > Please go ahead. Regards, Adam

Bug#1009065: buster-pu: package dropbear/2018.76-5+deb10u1

Control: tags -1 + confirmed On Wed, 2022-04-06 at 21:26 +0200, Guilhem Moulin wrote: > CVE-2019-12953: Dropbear 2011.54 through 2018.76 has an inconsistent > failure delay that may lead to revealing valid usernames. This is a > different issue than CVE-2018-15599. > Please go ahead; sorry for

Bug#1008163: buster-pu: package node-minimist/1.2.0-1+deb10u2

Control: tags -1 + confirmed On Wed, 2022-03-23 at 12:45 +0100, Yadd wrote: > node-minimist is vulnerable to a prototype pollution not totally > fixed > by CVE-2020-7598 patch (pushed in 1.2.5-1 and 1.2.0-1+deb10u1) > Please go ahead; sorry for the delay. Regards, Adam

Bug#1008154: buster-pu: package node-node-forge/0.8.1~dfsg-1+deb10u1

Control: tags -1 + confirmed On Wed, 2022-03-23 at 11:29 +0100, Yadd wrote: > node-node-forge signature verification code is lenient in checking > the digest > algorithm structure. This can allow a crafted structure that steals > padding > bytes and uses unchecked portion of the PKCS#1 encoded

Bug#1016707: nodejs: ftbfs on riscv64 because of a failing test

Package: nodejs Version: 18.6.0+dfsg-5 Severity: important The idea is to ignore those failures until they are resolved by upstream v8 riscv team, CPU Profiling is really not a core feature of nodejs. not ok 3046 sequential/test-cpu-prof-drained --- duration_ms: 3.98 severity: fail

Bug#1009076: buster-pu: minidlna/1.2.1+dfsg-2+deb10u3

Control: tags -1 + confirmed On Wed, 2022-04-06 at 21:49 +, Thorsten Alteholz wrote: > The attached debdiff for minidlna fixes CVE-2022-26505 in Buster. > This > CVE has been marked as no-dsa by the security team. > Please go ahead; sorry for the delay. Regards, Adam

Bug#1010060: buster-pu: package mutt/1.10.1-2.1+deb10u6

Control: tags -1 + confirmed On Sat, 2022-04-23 at 15:04 +0200, Salvatore Bonaccorso wrote: > I prepared an update for mutt, fixing CVE-2022-1328, a buffer- > overflow > in uudecoder. > Please go ahead; sorry for the delay. Regards, Adam

Bug#1009652: buster-pu: package nvidia-graphics-drivers/418.226.00-3

Control: tags -1 + confirmed On Wed, 2022-04-13 at 18:26 +0200, Andreas Beckmann wrote: > I'd like to update nvidia-graphics-drivers in buster to the final > upstream release. It has reached EoL in 03/2022, that should be > documented with a NEWS entry (as we had done with the 340xx legacy >

Bug#1009251: buster-pu: fribidi/1.0.5-3.1+deb10u2

Control: tags -1 + confirmed On Sat, 2022-04-09 at 23:03 +, Thorsten Alteholz wrote: > > The attached debdiff for fribidi fixes CVE-2022-25308, CVE-2022-25309 > and > CVE-2022-25310 in Buster. These CVEs have been marked as no-dsa by > the > security team. > Please go ahead; sorry for the

Bug#1016706: transition: GNOME 43 mega libsoup3 transition

Package: release.debian.org Tags: moreinfo User: release.debian@packages.debian.org Usertags: transition X-Debbugs-Cc: debian-gtk-gn...@lists.debian.org As requested, I am filing this bug early but I still need to do local rebuilds and testing. GNOME 43 is switching its core apps and

Bug#1010380: buster-pu: flac/1.3.2-3+deb10u2

Control: tags -1 + confirmed On Fri, 2022-04-29 at 22:33 +, Thorsten Alteholz wrote: > The attached debdiff for flac fixes CVE-2021-0561 in Buster. This > CVE > has been marked as no-dsa by the security team. > Please go ahead; sorry for the delay. Regards, Adam

Bug#1011030: buster-pu: package htmldoc/1.9.3-1+deb10u4

Control: tags -1 + confirmed On Sun, 2022-05-15 at 20:32 +0200, Håvard Flaget Aasen wrote: > Fixes three CVE's CVE-2022-24191, CVE-2022-27114 and CVE-2022-28085 > > [ Reason ] > One minor issue, two unimportant, still nice to have them all fixed > at > the same time. > > [ Impact ] > Images is

Bug#1010388: buster-pu: package node-ejs/2.5.7-1+deb10u1

Control: tags -1 + confirmed On Sat, 2022-04-30 at 10:23 +0200, Yadd wrote: > node-ejs is vulnerable to server-side template injection > (CVE-2022-29078, #1010359) and probably to prototype pollution. > Please go ahead; sorry for the delay. Regards, Adam

Bug#1010858: buster-pu: package unrar-nonfree/1:5.6.6-1+deb10u1

Control: tags -1 + confirmed On Thu, 2022-05-12 at 02:31 +0900, yokota wrote: > CVE-2022-30333 is directory traversal vulnerability. > It write to files during an extract operation on outside of > extraction > directory. > Please go ahead; sorry for the delay. Regards, Adam

Bug#1015243: buster-pu: package commons-daemon/1.0.15-8

Control: tags -1 + confirmed On Mon, 2022-07-18 at 11:49 +0200, Chris Hofstaedtler wrote: > Running a java daemon using jsvc and the JVM from (old)stable does > not > work. It appears no java programs inside Debian still use jsvc, > otherwise people would have noticed earlier. This is bug

Bug#1012048: buster-pu: package composer/1.8.4-1+deb10u2

Control: tags -1 + confirmed On Sun, 2022-05-29 at 12:37 +0200, David Prévot wrote: > I’d like to address CVE-2022-24828 that has been tagged as no-dsa. > Some > people may also wish to see #989315 fixed (it was reported twice), as > well as #955485, and the fixes are trivial, so I’m proposing a

Bug#1011943: buster-pu: package php-guzzlehttp-psr7/1.4.2-0.1+deb10u1

Control: tags -1 + confirmed On Fri, 2022-05-27 at 14:23 +0200, David Prévot wrote: > The security team asked me to address #1008236 [CVE-2022-24775] via a > point release, so here I am. > Please go ahead; sorry for the delay. Regards, Adam

Bug#1016198: buster-pu: package gif2apng/1.9+srconly-2+deb10u1

Control: tags -1 + confirmed On Fri, 2022-07-29 at 08:57 +0200, Håvard F.Aasen wrote: > This upload fixes three CVE's; > * CVE-2021-45909, Closes: #1002668: > heap based buffer overflow in the DecodeLZW > * CVE-2021-45910, Closes: #1002667: > heap-based buffer overflow within the main

Bug#1016705: RM: golang-github-audriusbutkevicius-kcp-go -- ROM; un-needed, upstream repo pruned

Package: ftp.debian.org Severity: normal X-Debbugs-Cc: debian...@lists.debian.org, utka...@debian.org Hi, golang-github-audriusbutkevicius-kcp-go has no reverse-depends, and its upstream repo also seems removed (https://github.com/AudriusButkevicius/kcp-go) Furthermore, it appears to be a fork

Bug#1016517: menu bar reappeared

Menu bar reappeared after a reboot... Might have been a library mismatch or something like that. PS : I do not know how to close the bug

Bug#1016704: flameshot: broken flameshot icon

Package: flameshot Version: 12.1.0-1 Severity: minor X-Debbugs-Cc: roy.sin...@norangshol.no Dear Maintainer, After installing flameshot and starting it from the command line, it spams a message to either stdout or stderr after program exit. Simply try to start `flameshot --gui` and exit, it

Bug#939904: Bug#930735: WireGuard: Add resolvconf as optional dependency

On Mon, 09 Sep 2019 19:14:46 -0400 Daniel Kahn Gillmor wrote: > Control: clone 930735 -1 > Control: reassign -1 src:systemd > Control: severity -1 wishlist > Control: blocks 930735 with -1 > Control: retitle -1 systemd should ship resolvconf symlink in some package > Control: affects -1 +

Bug#1011483: closed by Chris Hofstaedtler (Re: #1011483 duplicate/related to #1003366)

Hi, * Eugene Losowski-Gallagher [220804 18:48]: > Hi Chris, > > Thank you for the prompt to test against sid. > I just tested and can confirm that it works. Thanks for checking! Chris

Bug#1016703: mkdocs-material: Please package recent version

Package: mkdocs-material Version: 8.2.5-1 Severity: wishlist Hello Sandro, could you please consider to package the recent upstream version of mkdocs-material? Could you also please (re)close the issue #1008691 by the newer version within the new changelog entry? As Paul Grevers explained to

Bug#1002572: git-send-email: Adds spurious space to address name containing a dot

* Alejandro Colomar , 2021-12-24, 13:37: $ git format-patch -o patches/send/ -1 HEAD --to='Foo V. Bar ' $ git send-email patches/send/0013-Static-optimize-index-iteration.patch patches/send/0001-foo.patch To whom should the emails be sent (if anyone)? Message-ID to be used as In-Reply-To for the

Bug#1011456: ipv6toolkit: Update the package

On 23/05/22 05:00, Sophie Brun wrote: Is it possible the update the package to include the latest upstream changes? > I noticed that upstream has not made any tagged release since 2014 but they mentioned a version 2.1 in the CHANGES.TXT As of today, Upstream version numbers can't be trusted.

Bug#983138: ypserv: path to "bash" varies on usrmerge system

On 2022-08-05, Vagrant Cascadian wrote: > On 2022-08-05, Francesco P. Lovergine wrote: >> On Sun, Jul 17, 2022 at 01:52:46PM +0100, Simon McVittie wrote: >>>On Fri, 19 Feb 2021 at 14:38:09 -0800, Vagrant Cascadian wrote: The configure script sets the BASH variable to /bin/sh when run on a

Bug#1016702: metadata-cleaner: Please package 2.2.3

Source: metadata-cleaner Version: 2.2.1-2 Severity: wishlist X-Debbugs-CC: peyma...@posteo.net There has been a new upstream release: https://gitlab.com/rmnvgr/metadata-cleaner/-/releases Thank you, Jeremy Bicha

Bug#1016594: RFS: anonip/1.1.0-1 [ITP] -- Anonymize IP-addresses in log-files

tags 1016594 +pending thanks * Alexander Reichle-Schmehl [220803 21:26]: > I am looking for a sponsor for my package "anonip": Uwe Kleine-König kinldy reviewed the package and sponsored the upload. Best regards, Alexander

Bug#1016691: [Pkg-javascript-devel] Bug#1016691: pkgjs-depends: please include version for inspected package

Hi, Thanks for those reports, I'll do that during the next days (I'm not at home so lower activity). Cheers, Yadd Le 5 août 2022 13:09:53 GMT+02:00, Jonas Smedegaard a écrit : >Source: pkg-js-tools >Version: 0.14.32 >Severity: normal > >-BEGIN PGP SIGNED MESSAGE- >Hash: SHA512 >

Bug#1016700: Kwrite does not show emoji fonts properly

Package: kwrite Version: 4:22.04.3-1 Severity: important X-Debbugs-Cc: sidic...@gmail.com When copying text that contains emojis from other software (such as Libreoffice writer) the Emojis show in kwrite as square boxes instead of showing properly. Such as copy/paste the thumbs up / thumbs down

Bug#983138: ypserv: path to "bash" varies on usrmerge system

On 2022-08-05, Francesco P. Lovergine wrote: > On Sun, Jul 17, 2022 at 01:52:46PM +0100, Simon McVittie wrote: >>On Fri, 19 Feb 2021 at 14:38:09 -0800, Vagrant Cascadian wrote: >>> The configure script sets the BASH variable to /bin/sh when run on a >>> usrmerge system, resulting in the pwupdate

Bug#1016699: knot-resolver: Fails autopkgtest on ppc64el

Package: knot-resolver Version: 5.4.4-1 Severity: normal User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu kinetic Dear Maintainer, Unfortunately, the recent -4 change to remove ppc64el builds was incomplete. There is another entry, later in the control file. -Dan

Bug#991859: Is a different opinion about a license a case for the ctte?

Sam Hartman dijo [Tue, Aug 02, 2022 at 09:17:57AM -0600]: > > TL;DR: you don't have any recourse that is appropriate for this > situation. > All the hammers are bigger than your nail. Well, hammers usually _are_ bigger than nails, otherwise... ;-) But anyways... > The secretary ruled that

Bug#1016697: RFS: diodon/1.13.0-1 -- GTK+ Clipboard manager

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "diodon": * Package name: diodon Version : 1.13.0-1 Upstream Author : Oliver Sauder * URL : https://launchpad.net/diodon * License : LGPL-3+,

Bug#1016696: gnome-keyring: Seahorse unable to import certificates

Package: gnome-keyring Version: 42.1-1 Severity: normal Dear Maintainer, When trying to import a certificate into seahorse/gnome-keyring, seahorse GUI application shows the 'import' button is grayish. While mouse hovering the "import" button shows the message "Cannot import because there are no

Bug#1016695: po4a: Strange behaviour with repeated strings (in halibut backend)

Package: po4a Version: 0.67-2 Severity: normal Tags: upstream X-Debbugs-Cc: Ben Hutchings I'm the translator of the German translation for the documentation of sgt-puzzles. It is a Debian-only patch at the moment for the halibut based sources. A few days ago Ben (the Debian maintainer) updated

Bug#1002600: Firefox ESR crashes on pre-SSE2 CPUs

Le 05/08/2022 à 12:32, karogyoker999 a écrit : > I've tested the proposed patch below: > https://github.com/amurzeau/debian-autobuild/releases/tag/firefox-esr%2F91.12.0esr-1%2Bnosse1_deb11u1 > > I've tested it on an Athlon XP 2600+ (Barton) with 3GB RAM. > > Everything seems fine. I can even

Bug#1016688: dieharder -h segfaults

On 5 August 2022 at 13:20, Milan Broz wrote: | Actually this patch is better, just displays usage and also check upper boundary (another segault with -d 10 ...) | | https://github.com/mbroz/dieharder/commit/7d60208c8a8beabe6d3d5a88399b83ebf03240a5 Thanks for both. I will try to fold

Bug#1016694: packages.debian.org uses favicon with white shadow

Package: www.debian.org Severity: wishlist Dear Maintainer, * What led up to the situation? I switched my browser to use dark theme and access packages.debian.org with it. * What exactly did you do (or not do) that was effective (or ineffective)? I switched my browser to use dark

Bug#1016693: davfs2: shutdown/reboot hangs when mount.davfs is not setuid and a davfs volume is left mounted

Package: davfs2 Version: 1.6.1-1 Severity: normal Hello, Not making /usr/sbin/mount.davfs setuid has a problematic consequence: if I run $ sudo mount /net/foo $ sudo reboot the reboot stays stuck for 90s, waiting for mount.davfs to exit. In the syslog, we can see août 05 13:46:03 begin

Bug#1016688: Acknowledgement (dieharder -h segfaults)

Actually this patch is better, just displays usage and also check upper boundary (another segault with -d 10 ...) https://github.com/mbroz/dieharder/commit/7d60208c8a8beabe6d3d5a88399b83ebf03240a5

Bug#1016692: pkgjs-depends: please include total amount of missing dependencies

Source: pkg-js-tools Version: 0.14.32 Severity: wishlist Tags: upstream -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Resolved data is listed as a directed graph. That's nice to get a feel of the complexity of the packaging task. Would be quite helpful as well to have the total count of

Bug#1016691: pkgjs-depends: please include version for inspected package

Source: pkg-js-tools Version: 0.14.32 Severity: normal -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Output of pkgjs-depends includes version for each dependency, but inspected package itself is listed without version. Please include version for the inspected package as well. - Jonas

Bug#895150: cinnamon-screensaver-command: Crashes and hangs when unable to grab the keyboard/mouse

cinnamon-screensaver had important changes time ago and other improvements also in 5.4.1 (https://github.com/linuxmint/cinnamon-screensaver/pull/410) can someone test and tell me if the issue is still present in latest version please? OpenPGP_signature Description: OpenPGP digital

Bug#895152: cinnamon-screensaver: cinnamon-screesaver-command only locks the screen the first time it is called

cinnamon-screensaver had important changes time ago and other improvements also in 5.4.1 (https://github.com/linuxmint/cinnamon-screensaver/pull/410) can someone test and tell me if the issue is still present in latest version please? OpenPGP_signature Description: OpenPGP digital

Bug#1016690: http-parser: Apply nodejs 10.x patch for CVE-2020-8287

Package: http-parser Severity: normal Tags: security patch User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu kinetic ubuntu-patch X-Debbugs-Cc: scho...@ubuntu.com Hi, In Ubuntu, the attached patch was applied to achieve the following: * d/p/cve-2020-8287.patch: cherry-picked from

Bug#1015787: zycore-c: please add support for riscv64

Source: zycore-c Version: 1.1.0-4 Followup-For: Bug #1015787 Hi, I have opened an issue for it: https://github.com/zyantific/zycore-c/issues/48 It has passed its test suite from my view: ``` ... 100% tests passed, 0 tests failed out of 3 ``` But not sure these test cases will cover on new

Bug#1016687:

Looks like in new Mesa you will have to explicitly enable codec support for the ones that are patent encumbered: option( 'video-codecs', type : 'array', value : [], choices: [ 'vc1dec', 'h264dec', 'h264enc', 'h265dec', 'h265enc' ], description : 'List of patent encumbered codecs to build

Bug#1016689: pkg-js-tools: broken manpages: Can't locate Cache/FileCache.pm in @INC

Source: pkg-js-tools Version: 0.14.32 Severity: normal -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Installed manpages pkgjs-depends.1.gz and pkgjs-easy-to-update.1.gz contain the following: CAN'T(1) User Commands

Bug#1002600: Firefox ESR crashes on pre-SSE2 CPUs

I've tested the proposed patch below: https://github.com/amurzeau/debian-autobuild/releases/tag/firefox-esr%2F91.12.0esr-1%2Bnosse1_deb11u1 I've tested it on an Athlon XP 2600+ (Barton) with 3GB RAM. Everything seems fine. I can even play videos on youtube with smooth sound and if I play the

Bug#1016688: dieharder -h segfaults

Package: dieharder Version: 3.31.1.2-1+b1 Severity: normal Dear Maintainer, dieharder utility segfaults if standalone help (-h) option is used. $ dieharder -h Segmentation fault (core dumped) Fix is trivial, see patch here

Bug#1014391: scilab: CVE-2022-30045 incorrect memory handling in ezml support leading to a heap out-of-bounds read

Le 05/08/2022 à 11:43, Neil Williams a écrit : On Mon, 1 Aug 2022 18:25:04 +0200 Sylvestre Ledru wrote: Hello, Le 05/07/2022 à 11:19, Neil Williams a écrit : Source: scilab Version: 6.1.1+dfsg2-3 Severity: important Tags: security X-Debbugs-Cc: codeh...@debian.org, Debian Security Team

  1   2   >