Re: Security concerns with minified javascript code

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Tue, Aug 25, 2015 at 07:17:12PM +0200, Jonas Smedegaard wrote: Quoting Scott Kitterman (2015-08-25 17:57:11) AFAIK we've only ever discussed the need to provide source. I don't know why there would be a requirement to reminify. I see no

Re: Security concerns with minified javascript code

Bas Wijnen writes (Re: Security concerns with minified javascript code): AFAIK Debian doesn't *require* generated files to be rebuilt. For example, it used to be common practice for a long time to copy config.{guess,sub} from autotools-dev instead of regenerating them with autoreconf (I think

Accepted mapcache 1.4.0-3 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 19:22:22 +0200 Source: mapcache Binary: libmapcache1 libmapcache1-dev mapcache-cgi mapcache-tools libapache2-mod-mapcache Architecture: source amd64 Version: 1.4.0-3 Distribution: unstable Urgency: medium

Re: Security concerns with minified javascript code

Scott Kitterman dijo [Tue, Aug 25, 2015 at 11:57:11AM -0400]: No, we don't require to rebuild everything from source. It should just be possible to do it with what is in main. The last occurrence that I can find of this discussion is here:

Re: system upgrade by systemd

Michael Meskes wrote: Can anyone tell me which package/configuration is reponsible for systemd running a package upgrade during bootup? I certainly never willingly configured this feature, but still have it. And for the second time it destroyed my system by deinstalling a lot of packages, instead

Accepted post-faq 0.10-20 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 18:00:48 +0200 Source: post-faq Binary: post-faq Architecture: source all Version: 0.10-20 Distribution: unstable Urgency: medium Maintainer: Roland Rosenfeld rol...@debian.org Changed-By: Roland Rosenfeld

Re: system upgrade by systemd

❦ 25 août 2015 18:03 +0200, Vincent Bernat ber...@debian.org : Can anyone tell me which package/configuration is reponsible for systemd running a package upgrade during bootup? I certainly never willingly configured this feature, but still have it. And for the second time it destroyed my

Accepted librscode 1.3-3 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 14:23:23 +0200 Source: librscode Binary: librscode1 librscode-dev librscode-dbg Architecture: source Version: 1.3-3 Distribution: unstable Urgency: medium Maintainer: Christian Kastner c...@debian.org Changed-By:

Accepted libnet-smtp-ssl-perl 1.03-1 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 17:15:46 +0200 Source: libnet-smtp-ssl-perl Binary: libnet-smtp-ssl-perl Architecture: source Version: 1.03-1 Distribution: unstable Urgency: low Maintainer: Debian Perl Group

Accepted flufl.bounce 2.3-3 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 11:34:43 -0400 Source: flufl.bounce Binary: python-flufl.bounce-doc python-flufl.bounce python3-flufl.bounce Architecture: source all Version: 2.3-3 Distribution: unstable Urgency: medium Maintainer: Barry Warsaw

Accepted gtkglextmm 1.2.0-7 (all amd64 source) into unstable, unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 09:44:58 +0100 Source: gtkglextmm Binary: libgtkglextmm-x11-1.2-0v5 libgtkglextmm-x11-1.2-dev libgtkglextmm-x11-1.2-doc Architecture: all amd64 source Version: 1.2.0-7 Distribution: unstable Urgency: medium

Accepted foomatic-db 20150825-1 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 17:07:43 +0200 Source: foomatic-db Binary: foomatic-db foomatic-db-compressed-ppds openprinting-ppds Architecture: source Version: 20150825-1 Distribution: unstable Urgency: medium Maintainer: Debian Printing Group

Accepted jackd2 1.9.10+20150825git1ed50c92~dfsg-1 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 17:13:51 +0200 Source: jackd2 Binary: jackd2 libjack-jackd2-0 jackd2-firewire libjack-jackd2-dev Architecture: source amd64 Version: 1.9.10+20150825git1ed50c92~dfsg-1 Distribution: unstable Urgency: low Maintainer:

Re: system upgrade by systemd

On 25/08/15 16:18, Michael Meskes wrote: Can anyone tell me which package/configuration is reponsible for systemd running a package upgrade during bootup? I think packagekit does the actual upgrade during boot, if one has been staged by some other component. gnome-software is the only PK

Accepted qmapshack 1.3.0-3 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 17:59:55 +0200 Source: qmapshack Binary: qmapshack Architecture: source amd64 Version: 1.3.0-3 Distribution: unstable Urgency: medium Maintainer: Debian GIS Project pkg-grass-de...@lists.alioth.debian.org

Accepted ufw 0.34-1 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 20 Aug 2015 14:10:54 -0500 Source: ufw Binary: ufw python-ufw Architecture: source all Version: 0.34-1 Distribution: unstable Urgency: low Maintainer: Jamie Strandboge ja...@ubuntu.com Changed-By: Jamie Strandboge

Accepted thuban 1.2.2-8 (source all amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 18:56:32 +0200 Source: thuban Binary: thuban thuban-doc Architecture: source all amd64 Version: 1.2.2-8 Distribution: unstable Urgency: medium Maintainer: Debian GIS Project pkg-grass-de...@lists.alioth.debian.org

Re: Security concerns with minified javascript code

Jakub Wilk dijo [Tue, Aug 25, 2015 at 04:04:52PM +0200]: To me the problem suggests that it is important from a security and accountability perspective to 1) include the human-readable source code of JavaScript in Debian packages, and 2) to compile the human-readable source code into a

Accepted linux 4.1.6-1 (all source) into unstable, unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 23 Aug 2015 12:19:22 +0200 Source: linux Binary: linux-source-4.1 linux-doc-4.1 linux-manual-4.1 linux-support-4.1.0-2 linux-libc-dev linux-headers-4.1.0-2-all linux-headers-4.1.0-2-all-alpha

Accepted linux 4.2~rc8-1~exp1 (all source) into experimental, experimental

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 24 Aug 2015 12:00:54 +0100 Source: linux Binary: linux-source-4.2 linux-doc-4.2 linux-manual-4.2 linux-support-4.2.0-rc8 linux-libc-dev linux-headers-4.2.0-rc8-all linux-headers-4.2.0-rc8-all-alpha

Re: Security concerns with minified javascript code

* Thomas Goirand z...@debian.org, 2015-08-24, 16:08: I believe the blog post below has relevance to Debian's stance on including minified JavaScript in packages: https://zyan.scripts.mit.edu/blog/backdooring-js/ To me the problem suggests that it is important from a security and

Re: [DDEB] Status on automatic debug packages (2015-08-24)

On Mon, Aug 24, 2015 at 02:28:05PM -0700, Steve Langasek wrote: I wonder how this list was arrived at. Offhand, I see the libc6-dbg and python3.5-dbg packages are both in section 'debug', both of which are part of the build-dependency closure of main; I'm pretty sure we don't want them

Accepted htrace 3.1.0-1 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Tue, 25 Aug 2015 16:05:48 +0200 Source: htrace Binary: libhtrace-core-java Architecture: source all Version: 3.1.0-1 Distribution: unstable Urgency: medium Maintainer: Debian Java Maintainers

Accepted python-xlib 0.14+20091101-5 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 16:18:06 +0200 Source: python-xlib Binary: python-xlib python3-xlib Architecture: source Version: 0.14+20091101-5 Distribution: unstable Urgency: medium Maintainer: Debian Python Modules Team

Accepted python-heatclient 0.4.0-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 13:00:14 + Source: python-heatclient Binary: python-heatclient Architecture: source all Version: 0.4.0-2 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack openstack-de...@lists.alioth.debian.org

Accepted mapserver 7.0.0-2 (source amd64 all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 14:33:32 +0200 Source: mapserver Binary: libmapserver2 libmapserver-dbg libmapserver-dev cgi-mapserver mapserver-bin mapserver-doc php5-mapscript libmapscript-perl python-mapscript ruby-mapscript

Accepted python-glance-store 0.4.0-4 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 14:25:23 + Source: python-glance-store Binary: python-glance-store python-glance-store-doc Architecture: source all Version: 0.4.0-4 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Accepted python-barbicanclient 3.0.3-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 14:32:38 + Source: python-barbicanclient Binary: python-barbicanclient Architecture: source all Version: 3.0.3-2 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Re: Security concerns with minified javascript code

On Tue, Aug 25, 2015, at 11:04, Jakub Wilk wrote: Do we actually require re-minifying JS code at build time? You can either ship the unminifyied JS, or minify it at build time. -- One disk to rule them all, One disk to find them. One disk to bring them all and in the darkness grind them.

Re: Security concerns with minified javascript code

Quoting Jakub Wilk (2015-08-25 16:04:52) * Thomas Goirand z...@debian.org, 2015-08-24, 16:08: I believe the blog post below has relevance to Debian's stance on including minified JavaScript in packages: https://zyan.scripts.mit.edu/blog/backdooring-js/ To me the problem suggests that it is

Re: git interface to snapshot.debian.org

[ Added d-a@ldo for the dsa parts. ] On Tue, 25 Aug 2015, Ian Jackson wrote: If the answer is „Nothing is stopping, just that someone has to do it“, then I’m volunteering, as long as I can do most of it during DebConf. There are two problems that are stopping us doing this right away:

Accepted wmfsm 0.36-1 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sun, 23 Aug 2015 10:02:43 -0400 Source: wmfsm Binary: wmfsm Architecture: source amd64 Version: 0.36-1 Distribution: unstable Urgency: medium Maintainer: Debian Window Maker Team pkg-wmaker-de...@lists.alioth.debian.org Changed-By:

system upgrade by systemd

Can anyone tell me which package/configuration is reponsible for systemd running a package upgrade during bootup? I certainly never willingly configured this feature, but still have it. And for the second time it destroyed my system by deinstalling a lot of packages, instead of putting the

Re: Security concerns with minified javascript code

❦ 25 août 2015 16:04 +0200, Jakub Wilk jw...@debian.org : I believe the blog post below has relevance to Debian's stance on including minified JavaScript in packages: https://zyan.scripts.mit.edu/blog/backdooring-js/ To me the problem suggests that it is important from a security and

Accepted afl 1.86b-1 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 15:41:37 +0200 Source: afl Binary: afl afl-clang Architecture: source amd64 Version: 1.86b-1 Distribution: unstable Urgency: medium Maintainer: Daniel Stender deb...@danielstender.com Changed-By: Daniel Stender

Accepted ardour3 4.2~dfsg-1 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sun, 23 Aug 2015 22:00:18 +0200 Source: ardour3 Binary: ardour3 Architecture: source amd64 Version: 4.2~dfsg-1 Distribution: unstable Urgency: low Maintainer: Debian Multimedia Maintainers

Accepted murano 2015.1.0-9 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 14:42:26 + Source: murano Binary: python-murano murano-common murano-api murano-engine murano-doc Architecture: source all Version: 2015.1.0-9 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Re: Automated download/update of data files

On Tuesday 25 August 2015 13:08:12 Ole Streicher wrote: This is probably the way to go. However, the original package does not update the data on a regular base. It checks whether the data are current when they are accessed and downloads a new version if the local version is too old. What

Accepted nibabel 2.0.1-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 24 Aug 2015 21:40:38 -0400 Source: nibabel Binary: python-nibabel python3-nibabel python-nibabel-doc Architecture: source all Version: 2.0.1-2 Distribution: unstable Urgency: medium Maintainer: NeuroDebian Team

Accepted python-oslotest 1.5.1-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 14:58:31 + Source: python-oslotest Binary: python-oslotest python3-oslotest python-oslotest-doc Architecture: source all Version: 1.5.1-2 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Accepted qtmultimedia-opensource-src 5.5.0-2 (source) into experimental

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 12:19:24 -0300 Source: qtmultimedia-opensource-src Binary: libqt5multimedia5 libqt5multimedia5-plugins libqt5multimediaquick-p5 libqt5multimediawidgets5 qml-module-qtmultimedia qml-module-qtaudioengine

Accepted mapcache 1.4.0-2 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 16:45:28 +0200 Source: mapcache Binary: libmapcache1 libmapcache1-dev mapcache-cgi mapcache-tools libapache2-mod-mapcache Architecture: source amd64 Version: 1.4.0-2 Distribution: unstable Urgency: medium

Accepted libur-perl 0.440-1 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 18:16:25 +0200 Source: libur-perl Binary: libur-perl Architecture: source Version: 0.440-1 Distribution: unstable Urgency: medium Maintainer: Debian Perl Group pkg-perl-maintain...@lists.alioth.debian.org

Re: system upgrade by systemd

Michael Meskes mes...@debian.org writes: Can anyone tell me which package/configuration is reponsible for systemd running a package upgrade during bootup? I certainly never willingly configured this feature, but still have it. And for the second time it destroyed my system by deinstalling a

Re: Security concerns with minified javascript code

On Tuesday, August 25, 2015 05:12:56 PM Vincent Bernat wrote: ❦ 25 août 2015 16:04 +0200, Jakub Wilk jw...@debian.org : I believe the blog post below has relevance to Debian's stance on including minified JavaScript in packages: https://zyan.scripts.mit.edu/blog/backdooring-js/ To me

Accepted python-oauthlib 1.0.3-1 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 17 Aug 2015 04:36:16 +0200 Source: python-oauthlib Binary: python-oauthlib python3-oauthlib Architecture: source all Version: 1.0.3-1 Distribution: unstable Urgency: medium Maintainer: Debian Python Modules Team

Accepted qlandkartegt 1.8.1+ds-2 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 17:31:23 +0200 Source: qlandkartegt Binary: qlandkartegt Architecture: source amd64 Version: 1.8.1+ds-2 Distribution: unstable Urgency: medium Maintainer: Debian GIS Project pkg-grass-de...@lists.alioth.debian.org

Accepted shiboken 1.2.2-2 (source amd64 all) into unstable, unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 24 Aug 2015 17:40:32 +0200 Source: shiboken Binary: shiboken shiboken-doc libshiboken1.2v5 libshiboken-py3-1.2v5 libshiboken-dev shiboken-dbg Architecture: source amd64 all Version: 1.2.2-2 Distribution: unstable Urgency:

Re: system upgrade by systemd

❦ 25 août 2015 17:18 +0200, Michael Meskes mes...@debian.org : Can anyone tell me which package/configuration is reponsible for systemd running a package upgrade during bootup? I certainly never willingly configured this feature, but still have it. And for the second time it destroyed my

Re: Security concerns with minified javascript code

Quoting Scott Kitterman (2015-08-25 17:57:11) On Tuesday, August 25, 2015 05:12:56 PM Vincent Bernat wrote: ❦ 25 août 2015 16:04 +0200, Jakub Wilk jw...@debian.org : I believe the blog post below has relevance to Debian's stance on including minified JavaScript in packages:

Re: system upgrade by systemd

I used the term anti-feature deliberately. I am well aware of what the systemd devs are trying to achieve here, and I strongly believe that it is a significant backwards step for Debian. We should not be doing this and making things worse for our users without (at the very least!) discussing

Re: system upgrade by systemd

Michael Meskes mich...@fam-meskes.de writes: PackageKit uses the very same resolver as apt itself does... A log file of what actually happened would be very helpful here, to determine the problem causing the package removal. Just try an update on a recently updated (Sunday) sid system and

Re: system upgrade by systemd

On Tue, Aug 25, 2015, at 08:48 PM, Michael Meskes wrote: Can anyone tell me which package/configuration is reponsible for systemd running a package upgrade during bootup? I certainly never willingly configured this feature, but still have it. And for the second time it destroyed my system by

Re: system upgrade by systemd

The only thing which makes use of this feature is GNOME through GNOME-Software, so if you don't want this, removing GNOME-Software will be enough. This is a joke, right? P.S: A log file on why the update failed would be very helpful though, because even if you don't use it, the

Re: Security concerns with minified javascript code

For years, we have been able to ship generated files without checking if they can really be built from sources (for example, autoconf stuff). And JS stuff should comply to stricter standards from day one? JS stuff has been in Debian for a long time; it isn't fair to say that this is day one.

Accepted gtkspellmm 3.0.3+dfsg-2 (all amd64 source) into unstable, unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 18:24:10 +0200 Source: gtkspellmm Binary: libgtkspellmm-3.0-0v5 libgtkspellmm-3.0-dev libgtkspellmm-3.0-doc Architecture: all amd64 source Version: 3.0.3+dfsg-2 Distribution: unstable Urgency: medium Maintainer:

Re: Security concerns with minified javascript code

❦ 25 août 2015 22:46 +0100, Steve McIntyre st...@einval.com : Notably, one of the tool is Grunt and its myriad of plugins. Even if Grunt was in Debian, we would also need Gulp, then Broccoli, because in Javascript, there is always someone thinking that it should be possible to do better. We need

Re: system upgrade by systemd

Looks like it's probably worth uninstalling all of the packagekit stuff if you don't want this horrendous anti-feature. Turns out I had only packagekit itself installed. Shouldn't its description mention this horrendous anti-feature? I couldn't agree more on the wording. Actually I consider

Re: system upgrade by systemd

I'm unclear as to what you have installed that triggers this, because I've been using systemd and sid for eons and have never encountered this behavior. (That also makes me pretty sure, pace Steve, that this is not something *systemd* as systemd is actually doing, but some other component.)

Accepted kde-runtime 4:4.14.2-4 (source all amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 26 Aug 2015 00:07:42 -0400 Source: kde-runtime Binary: kde-runtime kdebase-runtime kde-runtime-data plasma-scriptengine-javascript kde-runtime-dbg kdebase-runtime-dbg Architecture: source all amd64 Version: 4:4.14.2-4

Re: system upgrade by systemd

❦ 26 août 2015 05:23 +0200, Michael Meskes mes...@debian.org : Looks like it's probably worth uninstalling all of the packagekit stuff if you don't want this horrendous anti-feature. Turns out I had only packagekit itself installed. Shouldn't its description mention this horrendous

Re: system upgrade by systemd

PK does understand apt holds - only Aptitude doesn't set them correctly, see bug #683099 I wasn't talking about existing holds, but about an update strategy that prioritized removing packages like gnome-control-center over putting some other on hold automatically. I would expect an automatic

Re: Security concerns with minified javascript code

❦ 25 août 2015 22:37 GMT, Bas Wijnen wij...@debian.org : We need to leave the Javascript ecosystem mature a bit more but in the meantime, a bit of tolerance would be appreciated The minifier is a compiler. If it's not in main, files that are compiled with it cannot be in main. For

Re: Minutes from the 32bit architectures in Debian-bof

On Aug 25, Russ Allbery r...@debian.org wrote: - for i386, there is still sold new hardware with 32bit-only. Are there open issues for i386 (apart from the 32bit-generic ones)? Discussion that we need to get rid of it one day should be started. Can we fully support cross-grading to

Re: Automated download/update of data files

On Aug 25, Ole Streicher oleb...@debian.org wrote: What is the best way to keep these data up to date in Debian? An automated process as written in the pull request [1] is probably not the right way, since it is a potential privacy violation. One could let the I am frankly tired of people

Accepted libzen 0.4.31-4 (source amd64 all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Tue, 25 Aug 2015 15:17:38 +0800 Source: libzen Binary: libzen-dev libzen0v5 libzen-doc Architecture: source amd64 all Version: 0.4.31-4 Distribution: unstable Urgency: medium Maintainer: Chow Loong Jin hyper...@debian.org Changed-By:

Automated download/update of data files

Hi all, for astronomy (and probably for other parts of science) we need to access data files that are updated from time to time. An example is the difference between UTC and earth rotation. This data is updated every week and is needed to precisely calculate the positions of stars on the sky [1].

Accepted qbs 1.4.2+dfsg-1 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Mon, 24 Aug 2015 18:49:24 +0300 Source: qbs Binary: qbs libqbscore1 libqbsqtprofilesetup1 qbs-dev qbs-dbg qbs-examples qbs-doc qbs-doc-html Architecture: source all Version: 1.4.2+dfsg-1 Distribution: unstable Urgency: medium

Re: libstdc++ follow-up transitions

On 17/08/15 11:07, Matthias Klose wrote: There is now another test rebuild [2] done with an augmented dh_makeshlibs printing cxx11 symbols in libraries [3]. No new bug reports were filed yet. ... [2] https://people.debian.org/~doko/logs/gcc5-20150813/archive-gcc-08-13-2015/ [3] deb

Accepted libaqbanking 5.6.1beta-2 (source amd64 all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 09:24:58 +0200 Source: libaqbanking Binary: libaqbanking-dev libaqbanking-doc aqbanking-tools libaqbanking35-plugins libaqbanking-data libaqbanking35 libaqbanking35-dbg libaqhbci22 libaqofxconnect7 libaqebics0

Accepted make-dfsg 4.0-8.2 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Tue, 25 Aug 2015 20:05:48 +0200 Source: make-dfsg Binary: make make-guile Architecture: source Version: 4.0-8.2 Distribution: unstable Urgency: medium Maintainer: Manoj Srivastava sriva...@debian.org Changed-By: Aurelien Jarno

Re: git interface to snapshot.debian.org

Hi, Am Dienstag, den 25.08.2015, 13:59 +0100 schrieb Ian Jackson: If the answer is „Nothing is stopping, just that someone has to do it“, then I’m volunteering, as long as I can do most of it during DebConf. There are two problems that are stopping us doing this right away: - Maybe

Re: system upgrade by systemd

This is a feature of systemd and PackageKit. See http://www.freedesktop.org/wiki/Software/systemd/SystemUpdates/ The only thing which makes use of this feature is GNOME through GNOME-Software, so if you don't want this, removing GNOME-Software will be enough. Nothing else in Debian uses this[1].

Accepted blitz++ 1:0.10-3.3 (all amd64 source) into unstable, unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sun, 23 Aug 2015 14:46:54 +0100 Source: blitz++ Binary: libblitz0v5 libblitz0-dev libblitz-doc Architecture: all amd64 source Version: 1:0.10-3.3 Distribution: unstable Urgency: medium Maintainer: Debian Science Team

Accepted dcmtk 3.6.0-15.1 (all amd64 source) into unstable, unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sun, 23 Aug 2015 15:04:07 +0100 Source: dcmtk Binary: dcmtk libdcmtk2v5 libdcmtk2-dev dcmtk-www dcmtk-doc libdcmtk2v5-dbg Architecture: all amd64 source Version: 3.6.0-15.1 Distribution: unstable Urgency: medium Maintainer: Debian

Accepted jquery 1.11.3+dfsg-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 15:55:54 -0300 Source: jquery Binary: libjs-jquery Architecture: source all Version: 1.11.3+dfsg-2 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers

Accepted exim4 4.86-3 (source i386 all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 20:05:59 +0200 Source: exim4 Binary: exim4-base exim4-config exim4-daemon-light exim4 exim4-daemon-heavy eximon4 exim4-dbg exim4-daemon-light-dbg exim4-daemon-heavy-dbg exim4-dev Architecture: source i386 all

Accepted python-gmpy2 2.0.7-1 (source all amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 23 Aug 2015 15:36:51 -0700 Source: python-gmpy2 Binary: python-gmpy2 python3-gmpy2 python-gmpy2-common Architecture: source all amd64 Version: 2.0.7-1 Distribution: unstable Urgency: medium Maintainer: Martin Kelly

Re: Bug#796529: ITP: local-apt-repository -- Ready to use local apt repository

* Joachim Breitner nome...@debian.org [150823 07:24]: With pow-priority, you mean one that does not get shown by default? But is that much better than allowing the interested admin to change the configuration afterwards? Actually, I was thinking it should be similar to postfix, which looks

Accepted libuv1 1.7.2-1 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Tue, 25 Aug 2015 19:32:15 +0200 Source: libuv1 Binary: libuv1-dev libuv1 libuv1-dbg Architecture: source Version: 1.7.2-1 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers

Accepted python-pykmip 0.3.1-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 17:57:55 + Source: python-pykmip Binary: python-pykmip python3-pykmip Architecture: source all Version: 0.3.1-2 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Accepted python-glanceclient 1:0.17.1-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 18:21:20 + Source: python-glanceclient Binary: python-glanceclient Architecture: source all Version: 1:0.17.1-2 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Accepted python-muranoclient 0.5.9-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 18:10:28 + Source: python-muranoclient Binary: python-muranoclient python-muranoclient-doc Architecture: source all Version: 0.5.9-2 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Accepted leveldb 1.18-4 (source all amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 19:58:02 +0200 Source: leveldb Binary: libleveldb1v5 libleveldb-dev libleveldb-dbg leveldb-doc Architecture: source all amd64 Version: 1.18-4 Distribution: unstable Urgency: medium Maintainer: Alessio Treglia

Accepted libcap2 1:2.24-11 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 20:40:33 +0200 Source: libcap2 Binary: libcap2-bin libcap2 libcap2-dbg libcap-dev libpam-cap libcap2-udeb Architecture: source Version: 1:2.24-11 Distribution: unstable Urgency: medium Maintainer: Christian Kastner

Accepted libpdl-graphics-gnuplot-perl 2.005-1 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 11:26:07 -0700 Source: libpdl-graphics-gnuplot-perl Binary: libpdl-graphics-gnuplot-perl Architecture: source Version: 2.005-1 Distribution: unstable Urgency: medium Maintainer: Debian Perl Group

Accepted lightdm 1.14.2-2 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 21:02:40 +0200 Source: lightdm Binary: lightdm lightdm-vala liblightdm-gobject-1-0 liblightdm-qt-3-0 liblightdm-gobject-dev liblightdm-qt-dev gir1.2-lightdm-1 Architecture: source amd64 Version: 1.14.2-2

Accepted vtk6 6.2.0+dfsg1-4 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Tue, 25 Aug 2015 20:13:44 +0200 Source: vtk6 Binary: libvtk6-dev libvtk6-qt-dev libvtk6.2 libvtk6.2-qt python-vtk6 tcl-vtk6 vtk6 vtk6-doc vtk6-examples Architecture: source Version: 6.2.0+dfsg1-4 Distribution: unstable Urgency:

Accepted webassets 3:0.11-2 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 20:03:41 +0200 Source: webassets Binary: python-webassets python3-webassets python-webassets-doc Architecture: source all Version: 3:0.11-2 Distribution: unstable Urgency: medium Maintainer: Agustin Henze

Re: Security concerns with minified javascript code

* Ian Jackson ijack...@chiark.greenend.org.uk, 2015-08-25, 19:08: Not regenerating configure doesn't pose any significant risk that we're shipping a configure script that we can't regenerate (or, at least, regenerate an equivalent or better one). Autotools stuff tends to bitrot, just like

Accepted ncl 6.3.0-4~exp2 (source amd64 all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 24 Aug 2015 16:25:19 +0100 Source: ncl Binary: ncl-ncarg libncarg0 libncarg-dev libncarg-bin libncarg-data Architecture: source amd64 all Version: 6.3.0-4~exp2 Distribution: sid Urgency: medium Maintainer: Alastair McKinstry

Accepted python-django-pyscss 1.0.3-4 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 24 Aug 2015 17:21:16 +0200 Source: python-django-pyscss Binary: python-django-pyscss Architecture: source all Version: 1.0.3-4 Distribution: unstable Urgency: medium Maintainer: PKG OpenStack

Accepted unattended-upgrades 0.86.3 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Aug 2015 10:17:38 +0200 Source: unattended-upgrades Binary: unattended-upgrades Architecture: source all Version: 0.86.3 Distribution: unstable Urgency: medium Maintainer: Michael Vogt m...@debian.org Changed-By: Michael

Accepted thermald 1.4.3-5 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 21 Aug 2015 11:48:00 -0700 Source: thermald Binary: thermald Architecture: source amd64 Version: 1.4.3-5 Distribution: unstable Urgency: medium Maintainer: Colin King colin.k...@canonical.com Changed-By: Colin King

Accepted pybliographer 1.3.2-1.2 (source all) into experimental

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sun, 23 Aug 2015 10:21:14 +0200 Source: pybliographer Binary: pybliographer Architecture: source all Version: 1.3.2-1.2 Distribution: experimental Urgency: low Maintainer: Chris Lawrence lawre...@debian.org Changed-By: Luca

Accepted vistrails 2.2-1 (source all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 08 Jun 2015 15:32:03 +0100 Source: vistrails Binary: vistrails Architecture: source all Version: 2.2-1 Distribution: unstable Urgency: medium Maintainer: Alastair McKinstry mckins...@debian.org Changed-By: Alastair McKinstry

Accepted spice-gtk 0.28-1.1 (source amd64) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 24 Aug 2015 20:57:27 +0200 Source: spice-gtk Binary: spice-client-gtk spice-client-gtk-dbg spice-client-glib-usb-acl-helper spice-client-glib-usb-acl-helper-dbg libspice-client-glib-2.0-8 gir1.2-spice-client-glib-2.0

Accepted piuparts 0.65 (source) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 25 Aug 2015 08:23:51 + Source: piuparts Binary: piuparts piuparts-master piuparts-slave piuparts-common Architecture: source Version: 0.65 Distribution: unstable Urgency: medium Maintainer: piuparts developers team

Accepted libmediainfo 0.7.76-2 (source amd64 all) into unstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Tue, 25 Aug 2015 15:19:01 +0800 Source: libmediainfo Binary: libmediainfo-dev libmediainfo0v5 python-mediainfodll python3-mediainfodll libmediainfo-doc Architecture: source amd64 all Version: 0.7.76-2 Distribution: unstable Urgency:

Accepted biosig4c++ 1.4.1-1.1 (source) into experimental

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sun, 23 Aug 2015 09:31:29 +0200 Source: biosig4c++ Binary: libbiosig1 libbiosig1-dbg libbiosig-dev biosig-tools python-biosig octave-biosig Architecture: source Version: 1.4.1-1.1 Distribution: experimental Urgency: low

  1   2   >