Bug#1009345: bullseye-pu: package node-moment/2.29.1+ds-2+deb11u1

On 12/04/2022 07:42, Salvatore Bonaccorso wrote: Hi, On Tue, Apr 12, 2022 at 06:39:35AM +0200, Yadd wrote: Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu [ Reason ] node-moment is vulnerable to path traversal (#1009327,

Bug#1009118: python3-biopython: incompatible with muscle >= 5

Hi Étienne, On Sat, 9 Apr 2022 11:32:03 +0200 =?utf-8?Q?=C3=89tienne?= Mollier wrote: > Control: tags -1 + confirmed > Control: forwarded -1 https://github.com/biopython/biopython/issues/3902 Thanks for forwarding the issue upstream. > There seems to be enough changes between the two versions

Bug#1009321: thunderbird: OpenPGP integration refusing BrainpoolP512r1 ECC key after 91.8 upgrade

Hello Peter, Am 11.04.22 um 20:31 schrieb Peter Gerber: Dear Maintainer, After updating from 1:91.7.0-2~deb11u1 to 1:91.8.0-1~deb11u1 my PGP key disappeared from the OpenPGP Key Manager and can no longer be imported. I verified this on a second machine and the key was still there before the

Bug#1009345: bullseye-pu: package node-moment/2.29.1+ds-2+deb11u1

Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu [ Reason ] node-moment is vulnerable to path traversal (#1009327, CVE-2022-24785) [ Impact ] Medium vulnerability [ Tests ] No changes in test [ Risks ] Low risk, patch is

Bug#1009344: RFP: cathy -- a xmms2 client

Package: wnpp Severity: wishlist Package name : cathy Version : 3.6.8-1 URL : https://github.com/grizzlysmit/cathy License : GPL-3 An xmms2 client written in C++ version 20 it also uses fmt::format and Gtkmm-3.0.

Bug#1009331: ITP: node-gitlab-favicon-overlay -- Combine images for a favicon with the help of canvas

On 11/04/2022 22:47, Michael Ikwuegbu wrote: Package: wnpp Severity: wishlist Owner: Michael Ikwuegbu > X-Debbugs-CC: debian-de...@lists.debian.org * Package name    : node-gitlab-favicon-overlay   Version          

Bug#1009343: please consider adding Boost-1.0 and Expat to /usr/share/common-licenses

Package: base-files Severity: wishlist Version: 12.2 Expat and Boost-1.0 are both fairly common licenses in debian. I believe they are both well-defined, stable, and reasonably well-understood variants of the MIT family of licenses.

Bug#1009313: RFS: nginx/1.18.0-10 -- small, powerful, scalable web/proxy server

Hi, Thanks for your time on this package. I fully understand splitting the source package is a major change on the package scheme. I intended to leave it UNRELEASED so it can serve as a request for comment. However, every time I upload an UNRELEASED package, it gets deleted automatically. As a

Bug#192144: groff-base: eqn formats complex matrices badly on nroff devices

package groff groff-base forwarded 192144 https://savannah.gnu.org/bugs/?62298 thanks I've opened a ticket for this upstream. In reproducing it, I found diagnostics that no one ever commented on before which suggest that eqn could be improved, even if it doesn't ultimately make the input useful

Bug#1009342: xfce4-panel-profiles: reproducible builds: demo tarballs include user, group and file mode of build user

Source: xfce4-panel-profiles Severity: normal Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: umask username X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org Several of the tarballs shipped in /usr/share/xfce4-panel-profiles/layouts/ embed the username, userid,

Bug#1009330: pv is out of date

clone 1009330 -1 -2 retitle -1 HTTPS error in watch file severity -1 normal making a new bug for the outdated release, which i'll close soon with an upload (whoohoo!)

Bug#1009330: ivarch.com using invalid DH key size

Hi Andrew, Here is some news from the Debian package! :) I know you sometimes follow the updates in the bugtracker so I am sorry if this is a duplicate for you, but I wanted to let you know that our "new upstream release" scanner has failed to find the latest and greatest pv recently. That was

Bug#541688: groff: Patch for unicode box drawing characters in groff_char

package groff groff-base retitle 541688 groff-base: want Unicode box drawing characters in groff_char(7) tag 541688 + patch upstream forwarded 541688 https://savannah.gnu.org/bugs/?62296 thanks I recommend closing this 12 year-old bug. 1. If it wants to add groff special character identifiers of

Bug#1009330: pv is out of date

On 2022-04-11 19:16:41, Bjarni Ingi Gislason wrote: > Package: pv > Severity: wishlist > > Dear Maintainer, > > The version of package "pv" is out of date. You are correct in stating that (a) the package is out of date and (b) the watch file fails to find the new release... > The watch file

Bug#1009338: PowerPC and Package 'b43-fwcutter' has no installation candidate

Package: b43-fwcutter Version: 1:019-7 X-Debbugs-CC: glaub...@physik.fu-berlin.de Tags: sid I am working on an old PowerMac G5 running Debian Sid. I am trying to install firmware-b43-installer. It is having some trouble. I'm not sure how to fix it. I'm going to report it and then ask some

Bug#1009339: python-gitlab: reproducible builds: build year embedded in documentation

Source: python-gitlab Severity: normal Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: timestamps X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org The year of the build is embedded in various documentation:

Bug#1006638: firmware-misc-nonfree: /lib/firmware/i915/adlp_dmc_ver2_12.bin missing

On Tue, 01 Mar 2022 06:58:36 +0100 =?utf-8?q?Stefan_R=C3=BCcker?= wrote: root@mars:/lib/firmware/i915# update-initramfs -u update-initramfs: Generating /boot/initrd.img-5.16.0-1-amd64 W: Possible missing firmware /lib/firmware/i915/adlp_dmc_ver2_12.bin for module i915 I'm also seeing this

Bug#1009337: python-public: reproducible builds: ships .coverage file

Source: python-public Severity: normal Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: timestamps buildpath X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org With the update to python 3.10, the rule in debian/rules no longer successfully removes the .coverage file,

Bug#1009336: grub-pc: no GRUB_DISABLE_OS_PROBER Documentation entry

Package: grub-pc Version: 2.06-2 Severity: wishlist Tags: patch Dear Maintainer, I just finished a fresh install (bullseye) on a thinkpad x260 that also has a windoze partition. When I upgraded to sid: [...] Preparing to unpack .../grub-pc_2.06-2_amd64.deb ... Unpacking grub-pc (2.06-2) over

Bug#1009273: Should python-keepkey be removed?

Am Mon, Apr 11, 2022 at 10:50:05AM +0200 schrieb Richard Ulrich: > Hi Moritz, > > If it all worked and was in sync with electrum, that would be great. > > But I stopped updating it back then because in the end most of the time > I still had to install electrum and those plugins manually. > >

Bug#1006149: linux-image-5.16.0-1-686: Fails to boot on T41 Thinkpads

Damien Le Moal wrote : > I posted another patch which disables the read log command for the adapter > instead of just for your disk. Can you try that one too ? It did not work in my case ... and neither blacklisting the entire ICH4 class of pci adapters worked. Blacklisting components and/or

Bug#1009335: RM: python-keepkey -- RoQA; Depends on Python 2

Package: ftp.debian.org Severity: normal X-Debbugs-Cc: ri...@paraeasy.ch Please remove python-keepkey. The version currently in the archive is very old and still depends on Python 2. Removal acked by the maintainer in #1009273 Cheers, Moritz

Bug#1008787: (no subject)

Control: tags -1 pending This will be fixed in -9 when updated packaging is uploaded. A merge request [1] included a downgrade of the Lua module to the last known functional version, which solves the FTBFS problem as that version of the Lua module can still build on s390x due to the older

Bug#1009313: (no subject)

Can I suggest that this be rejected as it has no review from the Debian Maintainers Team (on git or otherwise)? (I've recently been added as a maintainer on the Git side of this for the Salsa repo, though not an uploader *yet* with my DM rights, but as we manage this on Git VCS... this should

Bug#1009334: firmware-amd-graphics: Freeze for VCN videos

Package: firmware-amd-graphics Version: 20210818-1 Severity: normal Dear Maintainer, I was affected by a freeze by this bug https://www.phoronix.com/scan.php?page=news_item=AMDGPU-FW-Avoid-VCN-Multi-Hang Can you add the firmware files AMD added today? Greetings and thanks, Tobias -- System

Bug#998147: fonts-fork-awesome: The file icons.yml is not included in the binary package

Oops, sorry about the leading slash. Fixed in DELAYED 10, in my MR, and here is the updated nmudiff. From: Nicholas D Steeves Date: Mon, 11 Apr 2022 16:07:12 -0400 Subject: [PATCH 1/2] Install icons.yml, which is needed to build qtforkawesome. --- debian/changelog | 10 ++

Bug#1009333: amd64-microcode: Update microcode for VCN video bug

Package: amd64-microcode Version: 3.20191218.1 Severity: normal Dear Maintainer, there seems to be a bug https://www.phoronix.com/scan.php?page=news_item=Zen-1-To-Zen-3-2022-AMD-ucode which AMD fixed today. I think I got the same 'hang problems'. Any plans to implement it? -- System

Bug#1008573: gpg-agent -managed SSH keys stored in Yubikeys cannot be used with OpenSSH 8.9

On 2022-04-11, Vagrant Cascadian wrote: > On 2022-03-28, Philippe Grégoire wrote: >> After upgrading openssh-client to 8.9p1, Yubikey-managed SSH keys >> can no longer be used. After downgrading to 1:8.4p1-5, it works. >> I believe this is due to recent changes in OpenSSH 8.9 regarding >>

Bug#1003653: Revision of removal of rename.ul from package util-linux

On Sun, Apr 10, 2022 at 07:37:05PM +0200, Helmut Grohne wrote: > Hi Dom and gregor, > > On Sun, Apr 10, 2022 at 03:06:56PM +0100, Dominic Hargreaves wrote: > > +1 to all of this. > > Thank you for your replies. They're not unexpected, but we (or at least > I) weren't entirely sure. > > >

Bug#1009332: maxima-emacs: Imaxima fails to render latex

Package: maxima-emacs Version: 5.44.0-3 Severity: normal Dear Maintainer, Running imaxima in Emacs does not result in pretty latex output. Instead an error message is show. Steps to reproduce 1) Launch Emacs and run M-x imaxima 2) At the maxima prompt type say diff(x**2, x) ; and press

Bug#998147: fonts-fork-awesome: The file icons.yml is not included in the binary package

Control: severity -1 important Control: tag -1 patch Control: block 1008958 by -1 Hi Alexandre! On Sun, 31 Oct 2021 00:56:15 +0200 Hannah Rittich wrote: > Source: fonts-fork-awesome > Version: 1.1.5+ds1-2 > Severity: normal > Tags: patch > X-Debbugs-Cc: v...@rittich.net > > Building Qt

Bug#1009331: ITP: node-gitlab-favicon-overlay -- Combine images for a favicon with the help of canvas

Package: wnpp Severity: wishlist Owner: Michael Ikwuegbu X-Debbugs-CC: debian-de...@lists.debian.org * Package name: node-gitlab-favicon-overlay Version : 2.0.0 Upstream Author : GitLab Frontend Team * URL :

Bug#1009313: RFS: nginx/1.18.0-10 -- small, powerful, scalable web/proxy server

Control: tags -1 moreinfo Hi Miao, Please do not skip a version (or leave it UNRELEASED). If this is a team upload (not in changelog...) and the team has confirmed splitting the package, please reference the okay statement. Else, nobody will touch this massive change. I am tagging moreinfo.

Bug#998739:

On Mon, 11 Apr 2022 22:18:26 +0300 Ievgen Popovych wrote: > Hello, > > I had the same issue when building a package with a system interpreter: > sysconfig module reports incorrect paths (pointing to `site-packages` > instead of `dist-packages`). > The culprit seems to be that it thinks that > >

Bug#1008323: bpftrace: fix FTBFS

❦ 11 April 2022 21:14 +02, Hector Oron: > According to https://github.com/iovisor/bpftrace/issues/2068 > > I applied the following patch to make the package build: Thanks! I will use the more minimal patch found here instead: https://github.com/iovisor/bpftrace/pull/2174 -- Make sure

Bug#839961: libjs-d3: please package new upstream release

Hi László, On Mon, 10 Feb 2020 22:39:25 +0100 =?UTF-8?B?TMOhc3psw7MgQsO2c3rDtnJtw6lueWkgKEdDUyk=?= wrote: On Wed, Jan 15, 2020 at 3:51 PM Balint Reczey wrote: > On Wed, 23 Jan 2019 20:12:56 +0100 Paul Gevers wrote: > > On Thu, 06 Oct 2016 22:03:43 +0200 Paul Gevers wrote: > > > Upstream d3

Bug#1009330: pv is out of date

Package: pv Severity: wishlist Dear Maintainer, The version of package "pv" is out of date. The watch file has a wrong website to search, should be .../programs/sources/pv... The search for the VCS repository has a wrong website. -- System Information: Debian Release: bookworm/sid

Bug#1009288: more info

This also happens on resume and on thaw. -- Yan

Bug#1009329: New upstream version 2.7.1 - Please package

Package: keepassxc Version: 2.6.6+dfsg.1-1 Hello Maintainer, Please consider packaging the new upstream version of KeePassXC 2.7.1. It contains a long list of important fixes and features: https://github.com/keepassxreboot/keepassxc/releases/tag/2.7.1

Bug#1009328: php-memcached: CVE-2022-26635

Source: php-memcached Version: 3.1.5+2.2.0-14.1 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for php-memcached. CVE-2022-26635[0]: | PHP-Memcached v2.2.0 and below contains an improper NULL

Bug#1009327: node-moment: CVE-2022-24785: path traversal vulnerability

Source: node-moment Version: 2.29.1+ds-3 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Control: found -1 2.29.1+ds-2 Control: found -1 2.24.0+ds-1 Hi, The following vulnerability was published for node-moment. CVE-2022-24785[0]: | Moment.js

Bug#998739:

Hello, I had the same issue when building a package with a system interpreter: sysconfig module reports incorrect paths (pointing to `site-packages` instead of `dist-packages`). The culprit seems to be that it thinks that > Current installation scheme: "posix_prefix" instead of `deb_system`.

Bug#1009326: src:pyparsing: fails to migrate to testing for too long: dropped binary package but replacement not ready

Source: pyparsing Version: 2.4.7-1 Severity: serious Control: close -1 3.0.7-2 Tags: sid bookworm User: release.debian@packages.debian.org Usertags: out-of-sync Control: affects -1 python-packaging Control: block -1 by 1006204 Dear maintainer(s), The Release Team considers packages that are

Bug#1009279: cloud-init: Please drop unneeded dependencies

On 4/11/22 00:15, Brett Holman wrote: Package: cloud-init Version: 21.4-3 Severity: normal Cloud-init no longer uses the following dependencies: python3-prettytable - since 2017 python3-six - since 2020 Both requirements were removed years ago upstream, we should drop them in Debian as well.

Bug#1008323: bpftrace: fix FTBFS

Hello, According to https://github.com/iovisor/bpftrace/issues/2068 I applied the following patch to make the package build: --- bpftrace-0.14.1.orig/src/btf.cpp +++ bpftrace-0.14.1/src/btf.cpp @@ -225,7 +225,7 @@ std::string BTF::c_def(const std::unorde char err_buf[256]; int err; -

Bug#1008813: ITP: cargo-strip -- subcommand that reduces the size of Rust binaries

Hello all, >> subcommand that reduces the size of Rust binaries >> As of Rust 1.59, the charge command is now able to remove a binary. >> This can be activated in your Cargo.toml. > "the charge command is now able to remove a binary". You mean like `rm > /usr/local/bin/foobar`? I /think/

Bug#1009324: GPU (CUDA) Support

Package: libsvm-dev Version: 3.24+ds-6 Severity: wishlist Any chance of a GPU-enabled version? Appropriate mods to use CUDA are in https://github.com/prehensilecode/mklabiti-libsvm-cuda although that might be a bit dated, not sure it's tracked since libsvm 3.0. But it would be really nice to

Bug#1009322: reportbug-gtk: sending bugreport via Debian mail fails

Package: reportbug-gtk Version: 11.4.1 Severity: serious Justification: unusuable Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? I tried to file a bugreport against a debian 5.17. trunk kernel. When *finished* I

Bug#1009323: mirror submission for mirror.highland-networks.com

Package: mirrors Severity: wishlist User: mirr...@packages.debian.org Usertags: mirror-submission Submission-Type: new Site: mirror.highland-networks.com Type: leaf Archive-architecture: ALL amd64 arm64 armel armhf hurd-i386 i386 kfreebsd-amd64 kfreebsd-i386 mips mips64el mipsel powerpc ppc64el

Bug#1009321: thunderbird: OpenPGP integration refusing BrainpoolP512r1 ECC key after 91.8 upgrade

Package: thunderbird Version: 1:91.8.0-1~deb11u1 Severity: important X-Debbugs-Cc: pe...@arbitrary.ch, t...@security.debian.org Dear Maintainer, After updating from 1:91.7.0-2~deb11u1 to 1:91.8.0-1~deb11u1 my PGP key disappeared from the OpenPGP Key Manager and can no longer be imported. I

Bug#987360: swaylock: Occassional unlock without password entered

I cannot answer for Pelle, but I was also experiencing this bug back when it was reported. FWIW: I'm unable to reproduce it with 1.6-1. That being said, triggering the bug does seem somewhat stochastic, so I can't rule out that a bunch more suspend/resume cycles would trigger it. But so far, so

Bug#1009320: linux-image-5.17.0-trunk-amd64: vlc (un)able to load broadcasters list depending on which kernel the system is booted from

Package: src:linux Version: 5.17.1-1~exp1 Severity: normal Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? Opening VLC and then trying to open a list of broadcasters (dvb-t). It fails with

Bug#1008573: gpg-agent -managed SSH keys stored in Yubikeys cannot be used with OpenSSH 8.9

On 2022-03-28, Philippe Grégoire wrote: > After upgrading openssh-client to 8.9p1, Yubikey-managed SSH keys > can no longer be used. After downgrading to 1:8.4p1-5, it works. > I believe this is due to recent changes in OpenSSH 8.9 regarding > ssh-agent communication protocol which GnuPG hasn't

Bug#947685: linux-image-5.4.0-1-amd64: NETDEV WATCHDOG: enp5s0f1 (r8169): transmit queue 0 timed out

On Sun, 2 May 2021 14:03:24 +0200 Salvatore Bonaccorso wrote: is this still reproducible with a recent kernel? I am running linux-image-5.16.0-6-amd64 5.16.18-1 with commented-out (disabled) workaround "ethtool -K enp5s0f1 tx off sg off tso off" and I no longer see any problems.

Bug#1009318: RFP: nvidia-switch -- shifts between NVIDIA Graphic Card and Intel without rebooting

Package: wnpp Severity: wishlist X-Debbugs-Cc: renanwillianpr...@hotmail.com, andrehfa...@gmail.com * Package name: nvidia-switch Version : git20220411.8924b86 Upstream Author : nvidiaswitch * URL : https://github.com/nvidiaswitch/nvidia-switch * License :

Bug#1009317: singleapplication: Please provide Qt6 library

Source: singleapplication Version: 3.3.4-1 Tags: sid bookworm Currently src:singleapplication has supported Qt6 builds. Please consider providing a Qt6 development package in parallel of existing Qt5 package. Thanks, Boyuan Yang signature.asc Description: This is a digitally signed message

Bug#1009316: firmware-linux-nonfree: new upstream release (20220411)

Package: firmware-linux-nonfree Version: 20210818-1 Severity: wishlist -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Earlier today a new tag ``20220411`` was created in https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git Could the new version be packaged an uploaded

Bug#1009224: Using different R versions in parallel with Debian

On 11 April 2022 at 18:40, Paul Menzel wrote: | I think, I see the misunderstanding. I thought the single quotes meant, | that *simpler* and *fancier* are commands for the mentioned purposes – | which made sense to me, as the end both on *r* (simpleR and fancieR). | Now I think they are just

Bug#1009224: Using different R versions in parallel with Debian

Dear Dirk, Am 11.04.22 um 16:13 schrieb Dirk Eddelbuettel: On 11 April 2022 at 16:00, Paul Menzel wrote: | Thank you very much for these suggestions. It looks like schroot | requires root privileges. But it’s a nice fallback alternative to still | use the Debian packages. So does Docker if

Bug#1008569: unar: diff for NMU version 1.10.1-3

Control: tags 1008569 + patch Control: tags 1008569 + pending X-Debbugs-CC: kr...@debian.org as...@debian.org jul...@debian.org Dear maintainer, I've prepared an NMU for unar (versioned as 1.10.1-3) and uploaded it to DELAYED/14. Please feel free to tell me if I should delay it longer. Regards.

Bug#861213: (no subject)

The current version (2.8-1.1) does include the East Asian Width property on the Category line. Including the actual number of columns as with wcwidth wouldn't probably be much more helpful than that, especially since it cannot be sensibly done for neutral and ambiguous characters. -k

Bug#1009262: linux-image-5.16.0-0.bpo.4-arm64: power supply incorrectly reported as offline

On 10 Apr 2022 07:39:54 -0400 James Valleroy wrote: > Package: src:linux > Version: 5.16.12-1~bpo11+1 > > I'm using a ROCKPro64 ... The system is > running on wall power adapter and does not have a battery. > > In the log it showed "WARNING System is on battery power, stopping". > It uses the

Bug#1008796: miniupnpd: compile miniupnpd also with IGD v1 only

Hi, I don't know what differs, but after several tries, I found that only the compile time change fixes it. If you look on some online forums it seems a known issue, and recompilation is the only workaround by now. -- per aspera ad upstream

Bug#1004130: debian logo displayed partly off screen

Package: plymouth Version: 22.02.122-1 Followup-For: Bug #1004130 I have this bug too. -- System Information: Debian Release: bookworm/sid APT prefers testing APT policy: (990, 'testing'), (500, 'stable'), (200, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign

Bug#1009314: unicode: fails to construct systematic names for some characters

Package: unicode Version: 2.8-1.1 Severity: normal The unicode tool fails to properly construct some systematic names that are abbreviated in the UnicodeData.txt file. It completely fails to do it in Tangut and Tangut Supplement blocks: $ unicode --brief 17a98 窘 U+17A98 - No such unicode

Bug#1009196: [Dev-luatex] Bug#1009196: texlive-binaries: Reproducible content of .fmt files

On 4/11/2022 4:34 PM, Roland Clobus wrote: The texlive-binaries in Debian contain an embedded copy of Lua 5.3. The Lua 5.4 version of luai_makeseed is more complex, see [2]. I'll write a feature request for Lua later, that is out-of-scope for this scenario. fyi: it is unlikely that luatex will

Bug#1008152: gprbuild: FTBFS during binary-indep build

Source: gprbuild Followup-For: Bug #1008152 Control: severity -1 normal

Bug#997728: libgnatcoll-db: FTBFS: raised CONSTRAINT_ERROR : uintp.adb:2002 overflow check failed

Source: libgnatcoll-db Followup-For: Bug #997728 Control: severity -1 normal Control: reassign -1 gnat-10 Control: tags -1 - bookworm ftbfs sid Control: merge -1 954681 Hello. This is most probably caused by the SOURCE_DATE_EPOCH patch applied by Debian when building GNAT from GCC sources. It

Bug#1009313: RFS: nginx/1.18.0-10 -- small, powerful, scalable web/proxy server

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "nginx" and separated module packages: * Package name: nginx Version : 1.18.0-10 Upstream Author : Igor Sysoev * URL : https://nginx.org * License :

Bug#729511:

Hi. I'd like to revive this request. It's been included in the official list of panel plugins for Xfce: https://gitlab.xfce.org/panel-plugins/xfce4-windowck-plugin It already has the debian directory. I tried packaging it but it segfaults when it's set to display the buttons on desktop. I have

Bug#1008928: linux: Missing build dependency for linux 5.15 arm64

Control: tag -1 moreinfo unreproducible On Mon, 2022-04-04 at 13:01 +, Riesop, Vincent wrote: > Source: linux > Severity: minor > > Dear Maintainer, > > building linux 5.15 for arm64 fails due to a missing build dependency. > Package gcc-arm-linux-gnueabihf is missing. > > The build fails

Bug#1009312: blhc: false positive NONVERBOSE BUILD in src:libclc

Package: blhc Version: 0.13-2 Severity: normal Hi, blhc triggers a NONVERBOSE BUILD error in src:libclc https://salsa.debian.org/opencl-team/libclc/-/jobs/2662603 ... $ blhc --debian --line-numbers --color ${SALSA_CI_BLHC_ARGS} ${WORKING_DIR}/*.build || [ $? -eq 1 ] 1031:NONVERBOSE BUILD: CXX

Bug#1009196: [Dev-luatex] Bug#1009196: texlive-binaries: Reproducible content of .fmt files

Hello Hans, Norbert, Thanks for your answers. On 11/04/2022 13:01, Norbert Preining wrote: it actually defeats one of the security properties of lua (which was explicitly introduced at some point: make sure that hashes have random order each run so that it's harder to retrieve sensitive data

Bug#1009311: dirmngr: should no longer use keys.openpgp.org by default

Package: dirmngr Version: 2.2.27-3+b1 Severity: normal The default https://keys.openpgp.org:443 key server is no longer working: $ gpg -v --recv-keys 7CA7ECAAF06216B90F894146ACF8146CAE8CBBC4 gpg: data source: https://keys.openpgp.org:443 gpg: pub rsa2048/ACF8146CAE8CBBC4 2019-01-02 gpg: key

Bug#1008168: bullseye-pu: package node-url-parse/1.5.3-1+deb11u1

On 24/03/2022 15:12, Moritz Mühlenhoff wrote: Am Wed, Mar 23, 2022 at 02:25:26PM +0100 schrieb Yadd: Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu [ Reason ] node-url-parse is vulnerable to an authorization Bypass Through

Bug#1009224: Using different R versions in parallel with Debian

Dear Charles, dear Dirk, Thank you very much for your answers. Am 09.04.22 um 14:16 schrieb Dirk Eddelbuettel: On 9 April 2022 at 17:30, Charles Plessy wrote: | Le Sat, Apr 09, 2022 at 10:19:17AM +0200, Paul Menzel a écrit : | > | > Thank you very much for packaging and maintaining R and

Bug#965323: postinst script deletes custom locales

How can I get out of this? What do you suggest? Are the tools to create custom locales included in the Debian package by accident? Harri

Bug#1009310: [Pkg-javascript-devel] Bug#1009310: copyright file conflict between two packages node-babel and node-babel-types

On 11/04/2022 15:21, shirish शिरीष wrote: Package: node-babel-types Version: 6.26.0+repack-4 Severity: normal Dear Maintainer, Got this while trying to upgrade node-babel - Unpacking node-babel7 (7.17.8+~cs214.260.191-2) ... dpkg: error processing archive

Bug#1008687: FTBFS: as-test_pool FAIL killed by signal 6 SIGABRT

Hello Matthias, On Mon, Apr 11, 2022 at 11:14:41AM +0200, Matthias Klumpp wrote: > I'll likely downgrade this bug, but this is fairly odd! If the tests > fail on some building machines, there is a chance that the actual > application also doesn't work everywhere. I can say though that this >

Bug#1009257: Option to convert white to transparency

Regarding the following, written by "Jeff" on 2022-04-11 at 06:05 Uhr +: The user-defined tools operate on the source images, not the resulting PDF. I think you might be mixing them up with the post-save hook, which does operate on the PDF. Oh yes, then I was indeed confused. Then I

Bug#1009196: [Dev-luatex] Bug#1009196: texlive-binaries: Reproducible content of .fmt files

> not only fmt, every output could suffer from the same problem if it If the final output (pdf) has traces of that, it might be of concern. But for now the discussion is about the fmt dump, which is independent of these items. Best regards Norbert -- PREINING Norbert

Bug#1009310: copyright file conflict between two packages node-babel and node-babel-types

Package: node-babel-types Version: 6.26.0+repack-4 Severity: normal Dear Maintainer, Got this while trying to upgrade node-babel - Unpacking node-babel7 (7.17.8+~cs214.260.191-2) ... dpkg: error processing archive /tmp/apt-dpkg-install-cLw40Y/12-node-babel7_7.17.8+~cs214.260.191-2_all.deb

Bug#1003653: Revision of removal of rename.ul from package util-linux

from a user pov, i'd hate not to have the perl renae at /usr/bin/rename. i've been using it since the early '90s and its re support is essetial. i very uch doubt i'm alone in that. -JimC -- James Cloos OpenPGP: 0x997A9F17ED7DAEA6

Bug#1008638: fixed in ldns 1.7.1-2.1

Hi Michael, Thanks for fixing this bug! Would you mind updating the git repo please? I've just approved to request to join the DNS team (I haven't received the request notification BTW) Cheers, -- Santiago On Sat, 09 Apr 2022 15:18:55 + Debian FTP Masters wrote: > Source: ldns >

Bug#1009299: linux-image-5.16.0-6-amd64: 5.16 breaks buttons below touchpad on Dell Precision 7550

Hi Marc, Le 2022-04-11 09:59, Marc Glisse a écrit : > Package: src:linux > Version: 5.16.18-1 > Severity: normal > > Dear Maintainer, > > the Dell Precision 7550 is a laptop which has a touchpad, and below it 3 > physical buttons. If I boot with linux-image-5.15.0-3-amd64, these > buttons work

Bug#1009309: udhcpc: allow usage without busybox

Source: busybox Version: 1:1.30.1-7 Severity: wishlist Tags: patch Hi Aurelien, would it be possible to avoid the udhcpc -> busybox dependency? It may seem strange to remove busybox in a quest to reduce file system usage at first, but if you need iproute2 for other reasons, it should be fine at

Bug#994876: maven: New upstream version 3.8.2 available

I looked at the latest maven version (3.8.5 at the time of this writing) to see how much work it would require and any blockers I might run into. I found the following: 1. I started with unpacking maven 3.8.5, moving over the debian package, adding new version number in changelog and running

Bug#1009284: util-linux: new upstream release with lsfd command

Hello Andres, * Andres Salomon [220411 05:15]: > I see that util-linux 2.38-rc2 is in experimental, but final 2.38 has > been released. As the lsof maintainer, I'm interested in seeing how > usable lsfd is in this release. It's meant to replace lsof on linux. > Lsfd was merged in rc1, but I

Bug#996965: Packaging bslib + licensing issues

On 23 February 2022 6:39:57 pm IST, Andreas Tille wrote: >Am Wed, Feb 23, 2022 at 01:52:26PM +0530 schrieb Nilesh Patra: >> Even if we give out sources It looks * very * unlikely for someone to edit >> this in what is a part of >> an * R * package. > >I'd rephrase "looks *very* unlikely" to

Bug#996965: Packaging bslib + licensing issues

Am Wed, Feb 23, 2022 at 01:52:26PM +0530 schrieb Nilesh Patra: > > This was what I was fearing. > I need to admit that this is a 'gigantic' waste of everyone's time to be > doing this. Yes. > Even if we give out sources It looks * very * unlikely for someone to edit > this in what is a part

Bug#996965: Packaging bslib + licensing issues

Hi Nilesh, Am Wed, Feb 23, 2022 at 12:24:41PM +0530 schrieb Nilesh Patra: > bslib is needed for the new rmarkdown update, and it is being used in other > packages > in the ecosystem as well, as it seems. Thanks a lot for working on this! > When I looked at the source, it comes with a few

Bug#996965: Packaging bslib + licensing issues

On 2/23/22 12:51 PM, Andreas Tille wrote: Am Wed, Feb 23, 2022 at 12:24:41PM +0530 schrieb Nilesh Patra: When I looked at the source, it comes with a few minified javascript files, which have sources so I can manage this. What looked like a bit of a problem to me is that it vendors several

Bug#996965: Packaging bslib + licensing issues

Hi all, [ CC'ed Andreas who last worked on this ] bslib is needed for the new rmarkdown update, and it is being used in other packages in the ecosystem as well, as it seems. When I looked at the source, it comes with a few minified javascript files, which have sources so I can manage this.

Bug#996965: Sources for inst/fonts/*.woff -- potential License problems?

Control: tags -1 upstream Control: forwarded -1 https://github.com/rstudio/bslib/issues/412

Bug#1009308: libopenexr-dev: Missing Breaks/Replaces libilmbase-dev

Package: libopenexr-dev Version: 3.1.4-1 Severity: normal ~~~ (sid)root@argenau:/# apt install libopenexr-dev=3.1.4-1 [...] The following additional packages will be installed: libimath-3-1-29 libimath-dev libopenexr-3-1-30 The following packages will be REMOVED: libilmbase-dev* The following

Bug#1009307: xfce4-goodies: Package description incorrectly asserts xfce4-artwork will be installed

Package: xfce4-goodies Version: 4.14.0 Severity: minor Dear Maintainer, The description for xfce4-goodies asserts that installing the package will install xfce4-artwork, however this is not listed as a dependency, and does not seem to be available in the Debian package repositories at all. I

Bug#1009196: [Dev-luatex] Bug#1009196: texlive-binaries: Reproducible content of .fmt files

On Mon, Apr 11, 2022 at 1:01 PM Norbert Preining wrote: > Hi Hans, hi Roland, > > thanks for your answer. > > > it actually defeats one of the security properties of lua (which was > > explicitly introduced at some point: make sure that hashes have random > order > > each run so that it's harder

Bug#988945: Another workflow for Rust Was: Rust libraries left broken

Hello Jonas, Hello people in the CC, On Mon, Apr 11, 2022 at 12:34:47PM +0200, Jonas Smedegaard wrote: > Quoting Sylvestre Ledru (2022-04-11 09:34:48) > > Le 11/04/2022 à 01:14, Jonas Smedegaard a écrit : > > > Quoting Sylvestre Ledru (2022-04-10 22:15:47) > > >> Maybe you should join the team,

Bug#1009196: [Dev-luatex] Bug#1009196: texlive-binaries: Reproducible content of .fmt files

Hi Hans, hi Roland, thanks for your answer. > it actually defeats one of the security properties of lua (which was > explicitly introduced at some point: make sure that hashes have random order > each run so that it's harder to retrieve sensitive data from mem) Well, that is a good point to

Bug#988945: Rust libraries left broken

Quoting Sylvestre Ledru (2022-04-11 09:34:48) > Le 11/04/2022 à 01:14, Jonas Smedegaard a écrit : > > Quoting Sylvestre Ledru (2022-04-10 22:15:47) > >> Maybe you should join the team, commit there and follow the process > >> for our packages? :) > > > > Thanks for the suggestion, but I decline

  1   2   >