On Mon, Nov 12, 2012 at 02:01:13PM +0100, Emmanuel Bouthenot wrote:
[...]
I'd like to get your approval about the upload of weechat 0.3.8-2wheezy1
to testing-proposed-updates in order to fix a security issue which could
permit to a remote attacker to crash weechat by forging malicious IRC
Andreas,
could you please
[ ] agree
[ ] disagree
to the suggestion to lower the priority of this bug. I would like to
deal with this as quick as possible but I would like to hear your opinion
about the action that should be done.
Kind regards
Andreas.
On Mon, Nov 12, 2012 at
On Wed, 14 Nov 2012, Niels Thykier wrote:
* The package had at least one RC bug without activity for the past
14 days.
Jonathan Wiltshire j...@debian.org
mediawiki-math (U)
Mediawiki Maintenance Team pkg-mediawiki-de...@lists.alioth.debian.org
mediawiki-math
Hey Jonathan,
Your message dated Thu, 15 Nov 2012 08:32:46 +
with message-id e1tyusq-wj...@franck.debian.org
and subject line Bug#693287: fixed in horizon 2012.1.1-7
has caused the Debian Bug report #693287,
regarding CVE-2012-5474: /etc/openstack-dashboard/local_settings.py is world
readable
to be
Hi,
minidjvu (0.8.svn.2010.05.06+dfsg-1) unstable; urgency=low
.
* support multiarch
* ack silly NMU (silly because the waf file was unused, and because
there is a difference between sourceless and source in odd
format)
* revamp autotools and engage automake for robustness
Your message dated Thu, 15 Nov 2012 08:47:31 +
with message-id e1tyv6h-00058s...@franck.debian.org
and subject line Bug#689898: fixed in lyskom-server 2.1.2-13
has caused the Debian Bug report #689898,
regarding Ships a folder in /var/run or /var/lock (Policy Manual section 9.3.2)
to be marked
On Mon, 2012-11-12 at 18:09 +0100, Salvatore Bonaccorso wrote:
Hi Steven
[...]
As you migth have seen, I uploaded a NMU to a delayed queue. You can
test the package in [1] if you like.
[1]: http://ftp-master.debian.org/deferred/
Regards,
Salvatore
Hi all,
I was ill these last few
Processing commands for cont...@bugs.debian.org:
# openmpi1.6 not part of wheezy
tags 692937 + sid
Bug #692937 [mpich2-doc,openmpi1.6-doc] openmpi1.6-doc and mpich2-doc: error
when trying to install together
Added tag(s) sid.
thanks
Stopping processing here.
Please contact me if you need
On 2012-11-15 09:20, Andreas Tille wrote:
Andreas,
could you please
[ ] agree
[ ] disagree
to the suggestion to lower the priority of this bug. I would like to
deal with this as quick as possible but I would like to hear your opinion
about the action that should be done.
I'm not
Hi:
I've uploaded another package to debian-mentors (v0.2.4) that only
addresses the bugs reported in hope it will be accepted in Wheezy, but
I haven't got any feedback yet.
The main difference between a sqldeveloper-package generated deb and a
RPM converted one is compliance with Debian
Package: mediatomb-common
Version: 0.12.1-4+b1
Severity: critical
File: /usr/bin/mediatomb
Tags: security
Attempt to force mediatomb to bind to a specific IP address (or interface) is
ignored. E.g. I've tried to change setting in /etc/default/mediatomb as
follows:
OPTIONS=-i 10.0.10.2
and
Processing commands for cont...@bugs.debian.org:
severity 691271 grave
Bug #691271 [lvm2] lvm2: Losing data when moving LV between regular HD → SSD
Ignoring request to change severity of Bug 691271 to the same value.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
Adam, I do not see any reason to unblock the freeze on minidjvu for
this issue.
But if you want to, and don't want the revamped autotools stuff, feel
free to just take 0.8.svn.2010.05.06+dfsg-0.1 and push it to
proposed-updates or whatever the procedure is.
Justification for
Hi,
On Thu, Nov 15, 2012 at 10:17:08AM +0100, Andreas Beckmann wrote:
On 2012-11-15 09:20, Andreas Tille wrote:
Andreas,
could you please
[ ] agree
[ ] disagree
to the suggestion to lower the priority of this bug. I would like to
deal with this as quick as possible but
found 690229 google-glog/0.3.2-3
thanks
Original bug was reported against 0.3.2-4 which does not exists AFAIK.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processing commands for cont...@bugs.debian.org:
found 690229 google-glog/0.3.2-3
Bug #690229 [google-glog] google-glog ftbfs on i386 in unstable
Marked as found in versions google-glog/0.3.2-3.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
690229:
Processing commands for cont...@bugs.debian.org:
severity 690252 serious
Bug #690252 [src:google-glog] google-glog: FTBFS on hurd-i386: missing
autoreconf
Severity set to 'serious' from 'important'
thanks
Stopping processing here.
Please contact me if you need assistance.
--
690252:
[dropped -release@]
On 2012-11-15 11:18, Andreas Tille wrote:
package than working around this in piuparts (IIRC this is blocking
about 50 rdepends from being checked).
Hmmm, I wonder what metapackage might remain to depend from cdd-dev ...
for that test, dependency resolution is done in
On Thu, Aug 09, 2012 at 05:04:00PM +0200, Laurent Bigonville wrote:
the best would be to patch nut.conf to have spaces already removed.
I don't see anything else.
In the current version in wheezy/sid, this is already done. Should we
do this also in stable to limit the number of people
On Thu, Nov 15, 2012 at 11:57:09 +0100, Stefano Zacchiroli wrote:
On Thu, Aug 09, 2012 at 05:04:00PM +0200, Laurent Bigonville wrote:
the best would be to patch nut.conf to have spaces already removed.
I don't see anything else.
In the current version in wheezy/sid, this is already
Hi, Andres,
On Nov 13 2012, Andres Salomon wrote:
I haven't heard anything about this bug, and I'd be pretty sad to see
wheezy released without youtube-dl, so I'm going to go ahead with the
NMU in the next few days.
Sorry for not replying earlier. I will upload a new version of youtube-dl
Control: severity -1 important
On jeu., 2012-11-15 at 12:57 +0400, Vladimir Volovich wrote:
Package: mediatomb-common
Version: 0.12.1-4+b1
Severity: critical
No need to over-estimate severity.
File: /usr/bin/mediatomb
Tags: security
Attempt to force mediatomb to bind to a specific IP
Processing control commands:
severity -1 important
Bug #693301 [mediatomb-common] MediaTomb always bind to all interfaces
regardless of configuration settings
Severity set to 'important' from 'critical'
--
693301: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693301
Debian Bug Tracking
On Thu, Nov 15, 2012 at 11:54:22AM +0100, Andreas Beckmann wrote:
[dropped -release@]
On 2012-11-15 11:18, Andreas Tille wrote:
package than working around this in piuparts (IIRC this is blocking
about 50 rdepends from being checked).
Hmmm, I wonder what metapackage might remain to
On Tue, Sep 25, 2012 at 05:13:39AM +0200, jw-...@freenet.de wrote:
On Sat, 8 Sep 2012 12:31:44 +0100 Ulrich Dangel u...@debian.org wrote:
I am not sure what happens when the maintainer does not react but maybe the
package should get removed
I tracked down the maintainer of the package
I'm using the latest version of Squeeze and I'm still having the same problem.
Tim Chadburn
--- On Tue, 30/10/12, Moritz Muehlenhoff j...@inutil.org wrote:
On Fri, May 04, 2012 at 02:04:59PM +0100, Tim Chadburn wrote:
Package: icedove
Version: 3.0.11-1+squeeze9
Severity: grave
Justification:
Le Thu, 15 Nov 2012 11:57:09 +0100,
Stefano Zacchiroli z...@debian.org a écrit :
On Thu, Aug 09, 2012 at 05:04:00PM +0200, Laurent Bigonville wrote:
the best would be to patch nut.conf to have spaces already
removed. I don't see anything else.
In the current version in wheezy/sid,
Processing commands for cont...@bugs.debian.org:
#From the developer reference (...) causes data loss, or introduces a
security hole (...); Getting new users to install testing instead of stable
can introduce security holes and/or data loss. I therefore think severity
grave is appropriate.
Hi Michael, hi Samuel,
On So, 11 Nov 2012, Michael Gilbert wrote:
Hi, I've uploaded an nmu fixing this issue to delayed/5. Please see
attached patch.
I see. But I expect you or Samuel to take care for freeze exceptions.
Because due to your upload the already granted freeze exception for -7a
Package: obmenu
Version: 1.0-2
Severity: grave
Justification: renders package unusable
Dear Maintainer,
*** Please consider answering these questions, where appropriate ***
* What led up to the situation?
Call obm-xdg with no arguments from shell or in openbox root menu
* What exactly did
Package: tiff
Version: 4.0.2-4
Followup-For: Bug #692345
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu raring ubuntu-patch
*** /tmp/tmpm0_BMg/bug_body
In Ubuntu, the attached patch was applied to achieve the following:
* SECURITY UPDATE: denial of service and possible code
Processing commands for cont...@bugs.debian.org:
package crawl
Limiting to bugs with field 'package' containing at least one of 'crawl'
Limit currently set to 'package':'crawl'
tags 692947 + pending
Bug #692947 [crawl] crawl: copyright file missing after upgrade (policy 12.5)
Added tag(s)
Hi Jonas,
Le dimanche, 29 juillet 2012 18.03:16, Jonas Smedegaard a écrit :
For Wheezy we should probably aim for the uglier but much simpler
solution. the master branch is not intended for Wheezy, I will
use a separate master-wheezy for that.
I think I disagree. The patch I
Hi,
On Thu, Oct 25, 2012 at 03:44:26PM +0200, Christoph Anton Mitterer wrote:
Hi.
On Thu, 2012-10-25 at 21:26 +0900, Osamu Aoki wrote:
But if you read history of bug report including patches, you could have
written a bit kinder tone message. I feel a bit sad to see this message.
Well it
Processing commands for cont...@bugs.debian.org:
forwarded 674156 https://bugzilla.gnome.org/show_bug.cgi?id=688406
Bug #674156 [glib2.0] glib2.0: GStaticMutex ABI change on armel (maybe other
archs)
Set Bug forwarded-to-address to
'https://bugzilla.gnome.org/show_bug.cgi?id=688406'.
thanks
Your message dated Thu, 15 Nov 2012 16:17:44 +
with message-id e1tz28o-0001kp...@franck.debian.org
and subject line Bug#692947: fixed in crawl 2:0.10.3-3
has caused the Debian Bug report #692947,
regarding crawl: copyright file missing after upgrade (policy 12.5)
to be marked as done.
This
Processing commands for cont...@bugs.debian.org:
# supposedly fixed in maintainer git repo
tags 692013 + pending
Bug #692013 [php5] php5-* modules: fails to install and uninstall if the config
file was removed by user
Added tag(s) pending.
thanks
Stopping processing here.
Please contact me
Package: diffutils
Version: 3.2-7
Severity: serious
Tags: patch experimental upstream
Justification: fails to build from source
Diffutils doesn't build with eglibc2.16 due to gets finally being
removed but the gnulib in the package not knowing about this. The
patch has links to upstream bugs.
A
Processing commands for cont...@bugs.debian.org:
severity 693346 normal
Bug #693346 [diffutils] diffutils: FTBFS with eglibc 2.16 - due to outdated
gnulib
Severity set to 'normal' from 'serious'
thanks
Stopping processing here.
Please contact me if you need assistance.
--
693346:
# [1]
forwarded 692237 http://subversion.tigris.org/issues/show_bug.cgi?id=4091
quit
Aron Xu wrote:
When I was updating an old copy of openwrt repository, svn up failed with
error:
svn: E235000: In file
'/tmp/buildd/subversion-1.7.5/subversion/libsvn_wc/update_editor.c'
line 1583:
Processing commands for cont...@bugs.debian.org:
# [1]
forwarded 692237 http://subversion.tigris.org/issues/show_bug.cgi?id=4091
Bug #692237 [subversion] svn: E235000: In file
'/tmp/buildd/subversion-1.7.5/subversion/libsvn_wc/update_editor.c' line 1583:
assertion failed (action ==
Hi,
Michal Čihař wrote (15 Nov 2012 06:47:07 GMT) :
It should be. However it won't be there for upgrades from versions
which did already move config file without using dpkg helper.
Unfortunately the helper is not clever enough to handle breakage
I've introduced.
OK. Well, this should be good
tags 666334 + patch
tags 666334 + pending
thanks
Dear maintainer,
I've prepared an NMU for gnustep-back (versioned as 0.20.1-2.1) and
uploaded it to DELAYED/2. Please feel free to tell me if I
should delay it longer.
Regards.
--
.''`. Homepage: http://info.comodo.priv.at/ - OpenPGP key
Processing commands for cont...@bugs.debian.org:
tags 666334 + patch
Bug #666334 [src:gnustep-back] FTBFS: build-arch problems with patch applying
and installation of files generated only in build-indep target
Added tag(s) patch.
tags 666334 + pending
Bug #666334 [src:gnustep-back] FTBFS:
Since Fedora doesn't consider the json license as good [1], it seems
we are not the only ones having this problem.
Have you checked what other distros are doing about that, especially Fedora?
[1] https://fedoraproject.org/wiki/Licensing:Main?rd=Licensing
--
Why is it that all of the
On 15.11.2012 18:51, Michael Biebl wrote:
Since Fedora doesn't consider the json license as good [1], it seems
we are not the only ones having this problem.
Have you checked what other distros are doing about that, especially Fedora?
[1]
On Thu, Nov 15, 2012 at 7:51 PM, Michael Biebl bi...@debian.org wrote:
Since Fedora doesn't consider the json license as good [1], it seems
we are not the only ones having this problem.
Have you checked what other distros are doing about that, especially
Fedora?
Fedora says it's bad, but
I think the best course of action is to contact debian-release team
and ask for an exception (e.g. in Cc:).
Unless we get upstream to change the license (which is unlikely), it's
too late in release cycle for any radical change (like stripping the
json out completely).
On Thu, Nov 15, 2012 at
Package: tar
Version: 1.26-4
Severity: serious
Tags: upstream experimental patch
Justification: fails to build from source
tar does not build against eglibc-2.16 due to gets having been removed
but embedded gnulib in package still referring to it.
Upstream bug links are in the patch.
This
Processing control commands:
severity -1 normal
Bug #693352 [tar] tar: FTBFS with eglibc-2.16 (due to outdated gnulib)
Severity set to 'normal' from 'serious'
--
693352: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693352
Debian Bug Tracking System
Contact ow...@bugs.debian.org with
Control: severity -1 normal
On Thu, Nov 15, 2012 at 18:40:06 +, Wookey wrote:
Package: tar
Version: 1.26-4
Severity: serious
Tags: upstream experimental patch
Justification: fails to build from source
tar does not build against eglibc-2.16 due to gets having been removed
but
On Thu, 2012-11-15 at 08:59 +0100, Emmanuel Bouthenot wrote:
On Mon, Nov 12, 2012 at 02:01:13PM +0100, Emmanuel Bouthenot wrote:
I'd like to get your approval about the upload of weechat 0.3.8-2wheezy1
to testing-proposed-updates in order to fix a security issue which could
permit to a
On Thu, Nov 15, 2012 at 08:59:07 +0100, Emmanuel Bouthenot wrote:
On Mon, Nov 12, 2012 at 02:01:13PM +0100, Emmanuel Bouthenot wrote:
[...]
I'd like to get your approval about the upload of weechat 0.3.8-2wheezy1
to testing-proposed-updates in order to fix a security issue which could
On Thu, Nov 15, 2012 at 10:17:08 +0100, Andreas Beckmann wrote:
On 2012-11-15 09:20, Andreas Tille wrote:
Andreas,
could you please
[ ] agree
[ ] disagree
to the suggestion to lower the priority of this bug. I would like to
deal with this as quick as possible but I
clone 693087 -1 -2 -3
reassign -1 ftp.debian.org
user ftp.debian@packages.debian.org
usertags -1 rm
retitle -1 RM: pam-rsa -- RoST; unmaintained, buggy and dangerous
user release.debian@packages.debian.org
reassign -2 release.debian.org
usertags -2 rm
retitle -2 RM: pam-rsa -- RoST;
Processing commands for cont...@bugs.debian.org:
clone 693087 -1 -2 -3
Bug #693087 [libpam-rsa] segfault in xscreensaver, screen revealed
Bug 693087 cloned as bugs 693358-693360
reassign -1 ftp.debian.org
Bug #693358 [libpam-rsa] segfault in xscreensaver, screen revealed
Bug reassigned from
gregor herrmann wrote:
I've prepared an NMU for gnustep-back (versioned as 0.20.1-2.1) and
uploaded it to DELAYED/2.
Thanks for taking the time and effort to fix a bug in my package.
The diff looks fine.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of
On Thu, Nov 15, 2012 at 08:27:29PM +0100, Julien Cristau wrote:
[...]
My opinion is you can wait more than a couple days.
Anyway, I've learnt today that it has been discovered another security
issue which will lead to another CVE soon, hence I suggest to wait until
this one will be fixed in
Hello Timo,
Timo Juhani Lindfors wrote on 2012-11-14 18:47:
but it does not seem to solve the problem for me.
I also looked at upstream git but they have a much more complicated fix.
O.K. I see this already patched source need more work. I will look
for a good solution in the next days.
Processing commands for cont...@bugs.debian.org:
# needs to be fixed before release
severity 690656 serious
Bug #690656 [harden-remoteaudit] harden-remoteaudit: Please remove dependency
on openvas-server
Severity set to 'serious' from 'normal'
thanks
Stopping processing here.
Please contact
Processing commands for cont...@bugs.debian.org:
block 690655 with 690656
Bug #690655 [release.debian.org] RM: openvas2 [wheezy] -- RoM;
abandoned-upstream
690655 was not blocked by any bugs.
690655 was not blocking any bugs.
Added blocking bug(s) of 690655: 690656
thanks
Stopping processing
Package: insserv
Version: 1.14.0-4
Severity: serious
Tags: patch
Justification: Breaks boot
See also:
#677097
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677097
When we added mountall-bootclean to initscripts, I didn't realise
at the time that the dependencies were insufficient, and
Your message dated Thu, 15 Nov 2012 20:47:54 +
with message-id e1tz6lq-00068j...@franck.debian.org
and subject line Bug#658139: fixed in evince 3.4.0-3.1
has caused the Debian Bug report #658139,
regarding missing mime entry
to be marked as done.
This means that you claim that the problem has
Your message dated Thu, 15 Nov 2012 20:48:00 +
with message-id e1tz6lw-0006bt...@franck.debian.org
and subject line Bug#692618: fixed in jquery 1.7.2+dfsg-1
has caused the Debian Bug report #692618,
regarding non-free files in upstream tarball (The Software shall be used for
Good, not Evil)
Processing commands for cont...@bugs.debian.org:
forcemerge 693015 693016
Bug #693015 [bind9] bind9: CVE-2012-4244 - A specially crafted Resource Record
could cause named to terminate
Bug #693016 {Done: Matthew Grant matthewgra...@gmail.com} [bind9] bind9:
CVE-2012-4244 - A specially crafted
Processing commands for cont...@bugs.debian.org:
found 693015 bind9/1:9.7.3.dfsg-1~squeeze7
Bug #693015 [bind9] bind9: CVE-2012-4244 - A specially crafted Resource Record
could cause named to terminate
Bug #693016 [bind9] bind9: CVE-2012-4244 - A specially crafted Resource Record
could cause
Processing commands for cont...@bugs.debian.org:
notfound 693015 bind9/1:9.7.3.dfsg-1~squeeze7
Bug #693015 [bind9] bind9: CVE-2012-4244 - A specially crafted Resource Record
could cause named to terminate
Bug #693016 [bind9] bind9: CVE-2012-4244 - A specially crafted Resource Record
could
Your message dated Thu, 15 Nov 2012 21:32:28 +
with message-id e1tz72y-0006o9...@franck.debian.org
and subject line Bug#693017: fixed in concavity 0.1-2
has caused the Debian Bug report #693017,
regarding concavity: FTBFS on non-amd64 platforms: tries to copy file from
.../bin/x86_64.
to be
On Thu, 15 Nov 2012 21:49:53 +0200, Yavor Doganov wrote:
I've prepared an NMU for gnustep-back (versioned as 0.20.1-2.1) and
uploaded it to DELAYED/2.
Thanks for taking the time and effort to fix a bug in my package.
The diff looks fine.
Thanks for your feedback and for taking the time
Processing commands for cont...@bugs.debian.org:
found 681457 1.7.13-1
Bug #681457 [libaudit0] libaudit: does not actually support ARM, breaks linked
binary like readahead
Marked as found in versions audit/1.7.13-1.
severity 681457 serious
Bug #681457 [libaudit0] libaudit: does not actually
Package: ghostscript
Version: 8.71~dfsg2-9
Severity: grave
Hi,
We're having problem with gs going into infinite loops when people print some
given
PDFs from CUPS, so after a few days you have fifteen gs processes that use 100%
CPU and the rest of your system doesn't really work too well.
The
Your message dated Fri, 16 Nov 2012 00:02:32 +
with message-id e1tz9oc-00088m...@franck.debian.org
and subject line Bug#691933: fixed in libphp-jpgraph 1.5.2-12.1
has caused the Debian Bug report #691933,
regarding libphp-jpgraph depends on contrib: ttf-mscorefonts-installer
to be marked as
Debdiffs attached, release team cc'd.
Sorry for the delay. Had some urgent important interruptions to deal with.
As far as I know, I do not have any upload rights, so I believe this is
as far as I can go without assistance. My usual accomplice is busy until
next week some time, so if the patches
Your message dated Thu, 15 Nov 2012 21:36:58 -0500
with message-id
CANTw=mpz1cduazudhnad+1p5+hzrrptdf+ys-7ogfn_wpg8...@mail.gmail.com
and subject line Re: Bug#693388: ghostscript: enters an infinite loop on some
PDF files, probably due to gs_2_colors patch
has caused the Debian Bug report
control: severity -1 important
This is a FTBFS, thus using severity serious.
... on hurd, which is not a release architecture.
Best wishes,
Mike
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processing control commands:
severity -1 important
Bug #690252 [src:google-glog] google-glog: FTBFS on hurd-i386: missing
autoreconf
Severity set to 'important' from 'serious'
--
690252: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690252
Debian Bug Tracking System
Contact
Hi,
hmm, the patches look ok, especially the DEP-3 headers are useful.
However, the debdiff seems to be for squeeze and not for wheezy? Are in
fact both squeeze and wheezy affected by the bugs? If yes, we need two
uploads.
-Timo
--
To UNSUBSCRIBE, email to
I rebuild Wheezy's version of libgcrypt11_1.5.0-3 with the
patch(no_global_init_during_thread_callbacks.diff) from Ubuntu.
I can confirm the new patched version of libgcrypt solves this problem,
and I am able to use sudo again.
Can someone review this patch and see if it would be a suitable
Processing commands for cont...@bugs.debian.org:
tags 690229 patch
Bug #690229 [google-glog] google-glog ftbfs on i386 in unstable
Added tag(s) patch.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
690229: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690229
79 matches
Mail list logo