Bug#935037: marked as done (nginx: CVE-2019-9511 CVE-2019-9513 CVE-2019-9516)

Your message dated Fri, 23 Aug 2019 05:47:47 + with message-id and subject line Bug#935037: fixed in nginx 1.10.3-1+deb9u3 has caused the Debian Bug report #935037, regarding nginx: CVE-2019-9511 CVE-2019-9513 CVE-2019-9516 to be marked as done. This means that you claim that the problem has

Bug#875161: marked as done ([qtm] Future Qt4 removal from Buster)

Your message dated Fri, 23 Aug 2019 04:41:10 + with message-id and subject line Bug#935464: Removed package(s) from unstable has caused the Debian Bug report #875161, regarding [qtm] Future Qt4 removal from Buster to be marked as done. This means that you claim that the problem has been

Bug#904649: marked as done (python3-txfixtures: fails to install with Python 3.7)

Your message dated Fri, 23 Aug 2019 04:41:59 + with message-id and subject line Bug#935478: Removed package(s) from unstable has caused the Debian Bug report #904649, regarding python3-txfixtures: fails to install with Python 3.7 to be marked as done. This means that you claim that the

Bug#875076: marked as done ([openteacher] Future Qt4 removal from Buster)

Your message dated Fri, 23 Aug 2019 04:40:47 + with message-id and subject line Bug#935463: Removed package(s) from unstable has caused the Debian Bug report #875076, regarding [openteacher] Future Qt4 removal from Buster to be marked as done. This means that you claim that the problem has

Bug#935486: quicksynergy: Depends on synergy which is due to be removed (Obsolete libs)

Package: quicksynergy Version: 0.9-2 Severity: serious Justification: Policy 3.5 If synergy is going to be removed is there any reason to keep this package? I suspect someone ought to file an rm bug. Scott K

Bug#851420: marked as done (openteacher: Requires no longer provided python-qt4 QtWebKit module)

Your message dated Fri, 23 Aug 2019 04:40:47 + with message-id and subject line Bug#935463: Removed package(s) from unstable has caused the Debian Bug report #851420, regarding openteacher: Requires no longer provided python-qt4 QtWebKit module to be marked as done. This means that you claim

Bug#908424: marked as done (python-flower (build) depends on libjs-twitter-bootstrap that will not be in buster)

Your message dated Fri, 23 Aug 2019 04:34:27 + with message-id and subject line Bug#935446: Removed package(s) from unstable has caused the Debian Bug report #908424, regarding python-flower (build) depends on libjs-twitter-bootstrap that will not be in buster to be marked as done. This

Bug#875062: marked as done ([nzb] Future Qt4 removal from Buster)

Your message dated Fri, 23 Aug 2019 04:34:52 + with message-id and subject line Bug#935451: Removed package(s) from unstable has caused the Debian Bug report #875062, regarding [nzb] Future Qt4 removal from Buster to be marked as done. This means that you claim that the problem has been

Bug#935375: marked as done (buffycli: Depends on to be removed libs)

Your message dated Fri, 23 Aug 2019 04:30:36 + with message-id and subject line Bug#935376: Removed package(s) from unstable has caused the Debian Bug report #935375, regarding buffycli: Depends on to be removed libs to be marked as done. This means that you claim that the problem has been

Bug#935313: missing ebtables dependency

Hello, On Wed, 21 Aug 2019 10:16:26 -0400 Antoine Beaupre wrote: > Vagrant, using the libvirt backend, started failing me recently, with > something like this: > > anarcat@curie:stretch64(master)$ vagrant up --provider libvirt > Bringing machine 'default' up with 'libvirt' provider... > ==>

Processed: bug 904649 is forwarded to https://github.com/testing-cabal/txfixtures/issues/10 ...

Processing commands for cont...@bugs.debian.org: > forwarded 904649 https://github.com/testing-cabal/txfixtures/issues/10 Bug #904649 [python3-txfixtures] python3-txfixtures: fails to install with Python 3.7 Set Bug forwarded-to-address to

Bug#935432: marked as done (kazoo (build-)depends on cruft package.)

Your message dated Fri, 23 Aug 2019 00:49:18 + with message-id and subject line Bug#935432: fixed in kazoo 2.6.1-2 has caused the Debian Bug report #935432, regarding kazoo (build-)depends on cruft package. to be marked as done. This means that you claim that the problem has been dealt with.

Bug#935432: marked as pending in kazoo

Control: tag -1 pending Hello, Bug #935432 in kazoo reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at:

Processed: Bug#935432 marked as pending in kazoo

Processing control commands: > tag -1 pending Bug #935432 [kazoo] kazoo (build-)depends on cruft package. Added tag(s) pending. -- 935432: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935432 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#830726: xtrlock: CVE-2016-10894: xtrlock does not block multitouch events

On 22/08/2019 18:50, Antoine Amarilli wrote: Hi Chris, On Wed, Aug 21, 2019 at 03:52:44PM -0700, Chris Lamb wrote: Cool! I'm not sure whether this other edge case is important -- are there situations where an attacker in front of a locked computer could manage to pull this off? I think we

Bug#830726: xtrlock: CVE-2016-10894: xtrlock does not block multitouch events

Hi Matthew, > I think we may be in danger of Trying Too Hard here - xtrlock and > similar are already vulnerable to some attacks (e.g. Ctrl-Alt-F1 could > get you to do tty which might have a login session on). Sure, but plugging in an external multitouch USB pointer seems like something that

Bug#925667: marked as done (dde-qt-dbus-factory: ftbfs with GCC-9)

Your message dated Thu, 22 Aug 2019 21:42:53 + with message-id and subject line Bug#925667: fixed in dde-qt-dbus-factory 5.0.1-1~exp1 has caused the Debian Bug report #925667, regarding dde-qt-dbus-factory: ftbfs with GCC-9 to be marked as done. This means that you claim that the problem has

Bug#875161: [qtm] Future Qt4 removal from Buster

On Thu, Aug 22, 2019 at 02:17:59PM -0700, Patryk Cisek wrote: > Hey Moritz, > > No, and upstream there's been no updates since June of 2017. Let's allow it > to be removed. Ack, I've just filed a removal bug. Cheers, Moritz

Bug#875161: [qtm] Future Qt4 removal from Buster

Hey Moritz, No, and upstream there's been no updates since June of 2017. Let's allow it to be removed. On Thu, Aug 22, 2019 at 12:51 PM Moritz Mühlenhoff wrote: > On Sat, Sep 09, 2017 at 11:08:10PM +0200, Lisandro Damián Nicanor Pérez > Meyer wrote: > > Source: qtm > > > > Therefore, please

Bug#874843: [cdcat] Future Qt4 removal from Buster

On Sat, Sep 09, 2017 at 09:03:03PM +0200, Lisandro Damián Nicanor Pérez Meyer wrote: > Source: cdcat > > Hi! As you might know we the Qt/KDE team are preparing to remove Qt4 > as [announced] in: > > [announced] > > >

Bug#875161: [qtm] Future Qt4 removal from Buster

On Sat, Sep 09, 2017 at 11:08:10PM +0200, Lisandro Damián Nicanor Pérez Meyer wrote: > Source: qtm > > Therefore, please take the time and: > - contact your upstream (if existing) and ask about the state of a Qt5 > port of your application > - if there are no activities regarding porting,

Bug#875207: [tipp10] Future Qt4 removal from Buster

On Sat, Sep 09, 2017 at 11:11:21PM +0200, Lisandro Damián Nicanor Pérez Meyer wrote: > Source: tipp10 > > > Hi! As you might know we the Qt/KDE team are preparing to remove Qt4 > as [announced] in: > > Therefore, please take the time and: > - contact your upstream (if existing) and ask about

Processed: [bts-link] source package src:redis-py-cluster

Processing commands for cont...@bugs.debian.org: > # > # bts-link upstream status pull for source package src:redis-py-cluster > # see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html > # https://bts-link-team.pages.debian.net/bts-link/ > # > user

Processed: closing 908779

Processing commands for cont...@bugs.debian.org: > close 908779 2.6.1+ds1-1 Bug #908779 {Done: Hilko Bengen } [src:bro] bro: CVE-2018-17019: Fix IRC names command parsing Marked as fixed in versions bro/2.6.1+ds1-1. Bug #908779 {Done: Hilko Bengen } [src:bro] bro: CVE-2018-17019: Fix IRC names

Bug#908779: closing 908779

close 908779 2.6.1+ds1-1 thanks

Processed: closing 908614

Processing commands for cont...@bugs.debian.org: > close 908614 2.6.1+ds1-1 Bug #908614 {Done: Hilko Bengen } [src:bro] bro: CVE-2018-16807: memory leak in kerberos scripts Marked as fixed in versions bro/2.6.1+ds1-1. Bug #908614 {Done: Hilko Bengen } [src:bro] bro: CVE-2018-16807: memory leak

Bug#908614: closing 908614

close 908614 2.6.1+ds1-1 thanks

Processed: libconfig-model-tkui-perl breaks libconfig-model-itself-perl autopkgtest

Processing control commands: > found -1 libconfig-model-tkui-perl/1.370-1 Bug #935453 [src:libconfig-model-tkui-perl, src:libconfig-model-itself-perl] libconfig-model-tkui-perl breaks libconfig-model-itself-perl autopkgtest Marked as found in versions libconfig-model-tkui-perl/1.370-1. > found

Bug#935453: libconfig-model-tkui-perl breaks libconfig-model-itself-perl autopkgtest

Source: libconfig-model-tkui-perl, libconfig-model-itself-perl Control: found -1 libconfig-model-tkui-perl/1.370-1 Control: found -1 libconfig-model-itself-perl/2.018-1 Control: found -1 libconfig-model-itself-perl/2.016-1 Severity: serious Tags: sid bullseye X-Debbugs-CC:

Processed: Re: xfce4-session: 'debian/rules clean' after build causes removal of xfce4-session/*.[hc]

Processing control commands: > severity -1 important Bug #902362 [src:xfce4-session] xfce4-session: 'debian/rules clean' after build causes removal of xfce4-session/*.[hc] Severity set to 'important' from 'serious' -- 902362: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902362 Debian Bug

Bug#902362: xfce4-session: 'debian/rules clean' after build causes removal of xfce4-session/*.[hc]

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Control: severity -1 important On Mon, 25 Jun 2018 16:16:49 +0200 Andreas Beckmann wrote: > Source: xfce4-session > Version: 4.13.0-1 > Severity: serious > Justification: fails to build from source (but built successfully in the past) > > Hi, >

Bug#830726: xtrlock: CVE-2016-10894: xtrlock does not block multitouch events

Hi Antoine, > > Whilst I've fixed that bit at least, the new attached patch doesn't > > grab devices that are renabled via "xinput enable" although we do > > successfully detect that "edge" event now. > > Cool! I'm not sure whether this other edge case is important -- are > there situations

Bug#934591: Anki fails to start: ModuleNotFoundError: No module named 'PyQt5.sip'

> On Mon, Aug 12, 2019 at 01:13:36PM +0200, Arnaldo Pirrone wrote: > > Package: anki > > Version: 2.1.8+dfsg-1 > > Severity: grave > > > > pyqt5 package is installed > > > > Traceback (most recent call last): > > File "/usr/bin/anki", line 6, in > > import aqt > > File

Processed: Re: Virtualbox backport for Stretch?

Processing control commands: > severity -1 normal Bug #794466 [src:virtualbox] virtualbox: might not be suitable for stable releases due to lack of cooperation from upstream on security support for older releases Severity set to 'normal' from 'serious' -- 794466:

Bug#794466: Virtualbox backport for Stretch?

control: severity -1 normal Since buster is already released, let's let the package migrate to testing and upload to backports as before. Cheers, Roger

Bug#830726: xtrlock: CVE-2016-10894: xtrlock does not block multitouch events

Hi Chris, On Wed, Aug 21, 2019 at 03:52:44PM -0700, Chris Lamb wrote: > > I've been working on an updated patch that detects new devices and > > blocks them too. However, "grabbing" devices during the processing of > > these "device hierarchy changed" events appears to do something funny > > and

Bug#875222: [valkyrie] Future Qt4 removal from Buster

On Sat, Sep 09, 2017 at 11:12:01PM +0200, Lisandro Damián Nicanor Pérez Meyer wrote: > Source: valkyrie > Version: 2.0.0-1 > Severity: wishlist > User: debian-qt-...@lists.debian.org > Usertags: qt4-removal > > > Therefore, please take the time and: > - contact your upstream (if existing) and

Bug#935449: Build-Depends on removed python-celery

Package: src:thumbor Version: 6.7.0-1 Severity: serious python-celery was recently removed and so this package cannot be built anymore. I don't see why that B-D is needed though. -- WBR, wRAR signature.asc Description: PGP signature

Bug#935447: Please drop the Python 2 subpackage

Package: src:python-raven Version: 6.3.0-2 Severity: serious User: debian-pyt...@lists.debian.org Usertag: py2removal py2leaf py3available python-celery was recently removed so python-raven can't be installed and the package can't be built. -- System Information: Debian Release: bullseye/sid

Bug#926699: libc6-{i386,x32}: installing, removing, reinstalling in a --merged-usr system results in unmerged /lib{32,x32}

On Aug 19, Aurelien Jarno wrote: Thank you for expressing your position in more detail. > usrmerge works by moving all data from /lib into /usr/lib and then > creating a symlink /lib -> /usr/lib. The same is done for the biarch > or triarch directories, namely /lib32, /lib64, /libx32 and

Bug#935150: marked as done (mercurial: FTBFS on mips and s390x (zstd-related test failures))

Your message dated Thu, 22 Aug 2019 17:08:53 + with message-id and subject line Bug#935150: fixed in mercurial 5.1-2 has caused the Debian Bug report #935150, regarding mercurial: FTBFS on mips and s390x (zstd-related test failures) to be marked as done. This means that you claim that the

Bug#935387: marked as done (libdrumstick: Copyright attributions missing from debian/copyright)

Your message dated Thu, 22 Aug 2019 16:37:55 + with message-id and subject line Bug#935387: fixed in libdrumstick 1.1.2-2 has caused the Debian Bug report #935387, regarding libdrumstick: Copyright attributions missing from debian/copyright to be marked as done. This means that you claim

Processed: severity of 933930 is important

Processing commands for cont...@bugs.debian.org: > severity 933930 important Bug #933930 [network-manager] network-manager: Ethernet connection fails with internal DHCP client if DHCPNAK from alternate server comes first Severity set to 'important' from 'grave' > thanks Stopping processing here.

Bug#935439: ucf shouldn't change the file permissions

Package: ucf Version: 3.0038+nmu1 Severity: serious Hi, It seems that ucf, unlike dpkg, is changing the file permissions when rewriting the configuration file. It also seems that there is a difference in behavour between the "use maintainer file" option and the 3-ways merge. The former

Bug#935438: Please update to Python 3 or remove

Package: src:chaussette Version: 1.3.0-1 Severity: serious User: debian-pyt...@lists.debian.org Usertag: py2removal py2leaf py2rm According to #855671 this package doesn't seem to be working for the last 2.5 years, has popcon of 3, doesn't have Python 3 support and depends on a lot of Python 2

Bug#935432: kazoo (build-)depends on cruft package.

Package: kazoo Version: 2.6.1-1 Severity: serious python-kazoo depends on and the kazoo source package build-depends on the python-eventlet binary package which is no longer built by the python-eventlet source package. It's probably time to drop python 2 support from this package.

Bug#935150: marked as pending in mercurial

Control: tag -1 pending Hello, Bug #935150 in mercurial reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at:

Processed: Bug#935150 marked as pending in mercurial

Processing control commands: > tag -1 pending Bug #935150 [mercurial] mercurial: FTBFS on mips and s390x (zstd-related test failures) Added tag(s) pending. -- 935150: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935150 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Processed: unarchiving 896358, unarchiving 896385, found 896385 in 0.2.1-1, found 896358 in 0.2.1-1

Processing commands for cont...@bugs.debian.org: > unarchive 896358 Bug #896358 {Done: i...@debian.org (Iain R. Learmonth)} [python3-flask-rdf] python3-flask-rdf: flask_rdf fails to import Unarchived Bug 896358 > unarchive 896385 Bug #896385 {Done: i...@debian.org (Iain R. Learmonth)}

Bug#935413: ruby2.5: flaky autopkgtest: base dir expected vs actual mismatch

Source: ruby2.5 Version: 2.5.5-3 Severity: serious Tags: sid bullseye buster X-Debbugs-CC: debian...@lists.debian.org User: debian...@lists.debian.org Usertags: flaky Dear maintainers, With a recent upload of ncurses the autopkgtest of ruby2.5 fails in stable when that autopkgtest is run with

Processed: Re: Processed: Build of xt_ACCOUNT.ko failed for: 5.2.0-2-amd64 (x86_64) due to invalid kernel configuration

Processing control commands: > reassign -1 xtables-addons-dkms 3.2-1 Bug #934350 [linux] Build of xt_ACCOUNT.ko failed for: 5.2.0-2-amd64 (x86_64) due to invalid kernel configuration Bug reassigned from package 'linux' to 'xtables-addons-dkms'. No longer marked as found in versions 5.2.9-2.

Bug#931507: marked as done (kernel-wedge: HDA sound board detection takes 60s in d-i)

Your message dated Thu, 22 Aug 2019 11:02:10 + with message-id and subject line Bug#931507: fixed in linux 4.19.67-1 has caused the Debian Bug report #931507, regarding kernel-wedge: HDA sound board detection takes 60s in d-i to be marked as done. This means that you claim that the problem

Processed: Bug#932506 marked as pending in elastalert

Processing control commands: > tag -1 pending Bug #932506 [elastalert] elastalert: (build-)depends on cruft packages. Added tag(s) pending. -- 932506: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932506 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#932506: marked as pending in elastalert

Control: tag -1 pending Hello, Bug #932506 in elastalert reported by you has been fixed in the Git repository and is awaiting an upload. You can see the commit message below and you can check the diff of the fix at:

Bug#933150: evolution crashes on loading external contents

Hello Alf Gaida, I am just looking through crashees of some random packages and stopped on this bug. I found that you used at least following packages from experimental: evolution libglib2.0-0 libsoup2.4-1 And unfortunately there are no dbgsym packages for the versions of that time of

Bug#925831: marked as done (skiboot: ftbfs with GCC-9)

Your message dated Thu, 22 Aug 2019 11:05:57 +0200 with message-id <2fde7e62-f29b-7855-358e-6b4e42265...@debian.org> and subject line Re: Fixed : skiboot: ftbfs with GCC-9 has caused the Debian Bug report #925831, regarding skiboot: ftbfs with GCC-9 to be marked as done. This means that you claim

Bug#925831: Fixed : skiboot: ftbfs with GCC-9

Version: 6.5-1 On 21.08.19 16:51, Frédéric Bonnard wrote: > Hi Matthias, > new upstream skiboot 6.5 fixed that bug and I released a package of it : > https://buildd.debian.org/status/fetch.php?pkg=skiboot=amd64=6.5-1=1566396860=0 > >> Please keep the issue open until the package can be built in

Bug#935387: libdrumstick: Copyright attributions missing from debian/copyright

Source: libdrumstick Version: 0.5.0-3 Severity: serious Justification: Policy 2.3 In cmake_admin, the copyright holders for FindSharedMimeInfo.cmake and MacroEnsureVersion.cmake are missing from debian/copyright. Since listing these is a requirement of the license of the files (BSD), it's a

Bug#934969: marked as done (xfce4-power-manager FTBFS: undefined reference to `xfce_titled_dialog_new_with_mixed_buttons')

Your message dated Thu, 22 Aug 2019 09:11:47 +0200 with message-id and subject line Re: Bug#934969: xfce4-power-manager FTBFS: undefined reference to `xfce_titled_dialog_new_with_mixed_buttons' has caused the Debian Bug report #934969, regarding xfce4-power-manager FTBFS: undefined reference to

Bug#935384: Abandoned upstream

Package: phpunit-git Version: 2.1.4-1 Severity: serious [ Filled as an RC-bug by the maintainer to see the package auto-removed from testing. ] Since this Git wrapper is abandoned upstream and nothing depends on it in Debian, there is a priori little point to keep this package in the next

Bug#875177: [scap-workbench] Future Qt4 removal from Buster

Il will upgrade that package. Thank you Moritz Franklin -- Envoyé de mon téléphone. Excusez la brièveté.