Please unblock ttf-tuffy_20071106-3
Hi -release, please let ttf-tuffy_20071106-3 migrate to testing. It removes a spurious patch that was introduced by wrong usage of source v3.0. It was unapplying 01-spurious-langnames.patch, which fixed a nasty upstream bug in the font source files. Please find the debdiff inlined: - Fabian diff -Nru ttf-tuffy-20071106/debian/changelog ttf-tuffy-20071106/debian/changelog --- ttf-tuffy-20071106/debian/changelog 2009-12-07 21:31:56.0 +0100 +++ ttf-tuffy-20071106/debian/changelog 2010-10-05 20:14:43.0 +0200 @@ -1,3 +1,12 @@ +ttf-tuffy (20071106-3) unstable; urgency=low + + * Team upload + * Drop x-ttcidfont-conf, fontconfig et al. from Recommends + * Drop a spurious patch introduced by a wrong use of source v3.0, +that was unapplying 01-spurious-langnames.patch + + -- Christian Perrier bubu...@debian.org Tue, 05 Oct 2010 20:14:43 +0200 + ttf-tuffy (20071106-2) unstable; urgency=low [ Christian Perrier ] diff -Nru ttf-tuffy-20071106/debian/control ttf-tuffy-20071106/debian/control --- ttf-tuffy-20071106/debian/control 2009-12-07 21:31:37.0 +0100 +++ ttf-tuffy-20071106/debian/control 2009-12-20 17:51:43.0 +0100 @@ -13,7 +13,6 @@ Package: ttf-tuffy Architecture: all Depends: ${misc:Depends} -Recommends: x-ttcidfont-conf | fontconfig Description: The Tuffy Truetype Font Family Thatcher Ulrich's first outline font design. He started with the goal of producing a neutral, readable sans-serif text font. There are lots of diff -Nru ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 --- ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 2009-12-07 21:51:36.0 +0100 +++ ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 1970-01-01 01:00:00.0 +0100 @@ -1,92 +0,0 @@ -Description: Upstream changes introduced in version 20071106-2 - This patch has been created by dpkg-source during the package build. - Here's the last changelog entry, hopefully it gives details on why - those changes were made: - . - ttf-tuffy (20071106-2) unstable; urgency=low - . - [ Christian Perrier ] - * Switch to 3.0 (quilt) source format - * Update Standards to 3.8.3 (checked) - * Drop defoma use - . - [ Fabian Greffrath ] - * debian/clean: - + New file. Delete *.otf as well, as they are not created from the patched - sources. - * debian/compat: - + Raised debhelper compatibility to 7. - * debian/control: - + Changed section to fonts. - + Set Maintainer to Debian Fonts Task Force and added myself to Uploaders. - + Updated my email address. - + Added Vcs-Svn and Vcs-Browser fields. - + Raised Build-Depends to debhelper (= 7.0.50~) and quilt (= 0.46-7). - + Removed versioned Build-Depends-Indep on defoma. - + Changed Build-Depends-Indep to fontforge-nox | fontforge. - + Bumped Standards-Version to 3.8.2. - * debian/copyright: - + Coverted into a machine-readable format, relicensed the Debian packaging - under the GNU All-Permissive license and added license information for - the FontForge script. - * debian/control, debian/patches/*, debian/rules: - + Switched from dpatch to quilt. - * debian/postinst: - + Removed. No need to manually regenerate the font cache anymore, since - fontconfig (2.6.0-4) already registered a trigger. - * debian/rules: - + Converted from cdbs to debhelper 7.2. - * debian/ttf-tuffy.{defoma-hints,install}: - + Renamed from debian/defoma-hints and debian/install. - . - The person named in the Author field signed this changelog entry. -Author: Fabian Greffrath fabian+deb...@greffrath.com - -The information above should follow the Patch Tagging Guidelines, please -checkout http://dep.debian.net/deps/dep3/ to learn about the format. Here -are templates for supplementary fields that you might want to add: - -Origin: vendor|upstream|other, url of original patch -Bug: url in upstream bugtracker -Bug-Debian: http://bugs.debian.org/bugnumber -Forwarded: no|not-needed|url proving that it has been forwarded -Reviewed-By: name and email of someone who approved the patch -Last-Update: -MM-DD - ttf-tuffy-20071106.orig/tuffy_regular.sfd -+++ ttf-tuffy-20071106/tuffy_regular.sfd -@@ -55,6 +55,15 @@ ScriptLang: 2 - TtfTable: cvt 4 - !$MDh - EndTtf -+LangName: 1053 MagerKursiv -+LangName: 1034 NormalCursiva -+LangName: 1049 +BB4EMQRLBEcEPQRLBDkEGgRDBEAEQQQ4BDIA -+LangName: 1044 VanligKursiv -+LangName: 1040 NormaleCursivo -+LangName: 1038 Norm+AOEA-lD+AVEA-lt -+LangName: 1031 StandardKursiv -+LangName: 1036 NormalItalique -+LangName: 1043 RegelmatigCursief - LangName: 1033 Thatcher Ulrich http://tulrich.com+AAoA; http://tulrich.com+AAoA; Public Domain+AAoA - Encoding: Custom - UnicodeInterp: none ttf-tuffy-20071106.orig/tuffy_italic.sfd -+++ ttf-tuffy-20071106/tuffy_italic.sfd -@@ -55,6 +55,15 @@ ScriptLang: 2 -
Re: Bug#597864: libproxy0 not functional without libmozjs2d
On Wed, Oct 06, 2010 at 06:30:41AM +0200, Emilio Pozuelo Monfort wrote: On 23/09/10 23:45, Josselin Mouette wrote: Le jeudi 23 septembre 2010 à 19:55 +0200, Emilio Pozuelo Monfort a écrit : That's not true. libproxy can autodetect the proxy configuration from several places, libmozjs being one of them. But if you don't have it, it can still autodetect it from GConf (for GNOME), some KDE mechanism (I'm not a KDE guy!), your environment, a configuration file... so we don't force anything to be installed, because you most likely have installed something so that libproxy can autodetect the proxy settings. libmozjs is necessary to parse JavaScript in proxy.pac files. It would be really interesting to build again libproxy with Webkit/JavaScriptCore support. The circular dependency loop makes it hard, but it avoids this situation. We could enable it again, I doubt there will be a soname bump in any of the 3 libraries in Squeeze. RT: I disabled webkit support in libproxy to break a dependency loop (libproxy - webkit - libsoup - libproxy) because of a transition. Would it be acceptable if I enabled it back for Squeeze? Does that mean libproxy will depend (as in Depends control field) on webkit ? That's going to be a problem later, because iceweasel 4.0 may use libproxy (I enabled it, but I'm not entirely sure I'll keep it that way). Gustavo, I guess there are no plans of splitting JSC into its own tarball upstream? No. Mike -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006061231.ga3...@glandium.org
Bug#599249: unblock: ttf-tuffy/20071106-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package ttf-tuffy unblock ttf-tuffy/20071106-3 (originally proposed by Fabian Greffrath) please let ttf-tuffy_20071106-3 migrate to testing. It removes a spurious patch that was introduced by wrong usage of source v3.0. It was unapplying 01-spurious-langnames.patch, which fixed a nasty upstream bug in the font source files. Please find the debdiff below. (comments by /me) I have to add to this that, as we had it pending in our SVN, another change flew in, namely dropping a Recommends on obsolete stuff. We indeed dropped these Recommends in many font packages, so that one just gets inline with this. Please notice that this drop didn't trigger any problem that we're aware about, as of noweven though it was done in much more popular font packages. Besides that, I confirm what Fabian mentioned. Even though no RC bug was raised for this (Fabian even hadn't time for that as I fixed the issue as quickly as possible, being the culprit for the original mistake), that was an RC issue. diff -Nru ttf-tuffy-20071106/debian/changelog ttf-tuffy-20071106/debian/changelog --- ttf-tuffy-20071106/debian/changelog 2009-12-07 21:31:56.0 +0100 +++ ttf-tuffy-20071106/debian/changelog 2010-10-05 20:14:43.0 +0200 @@ -1,3 +1,12 @@ +ttf-tuffy (20071106-3) unstable; urgency=low + + * Team upload + * Drop x-ttcidfont-conf, fontconfig et al. from Recommends + * Drop a spurious patch introduced by a wrong use of source v3.0, +that was unapplying 01-spurious-langnames.patch + + -- Christian Perrier bubu...@debian.org Tue, 05 Oct 2010 20:14:43 +0200 + ttf-tuffy (20071106-2) unstable; urgency=low [ Christian Perrier ] diff -Nru ttf-tuffy-20071106/debian/control ttf-tuffy-20071106/debian/control --- ttf-tuffy-20071106/debian/control 2009-12-07 21:31:37.0 +0100 +++ ttf-tuffy-20071106/debian/control 2009-12-20 17:51:43.0 +0100 @@ -13,7 +13,6 @@ Package: ttf-tuffy Architecture: all Depends: ${misc:Depends} -Recommends: x-ttcidfont-conf | fontconfig Description: The Tuffy Truetype Font Family Thatcher Ulrich's first outline font design. He started with the goal of producing a neutral, readable sans-serif text font. There are lots of diff -Nru ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 --- ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 2009-12-07 21:51:36.0 +0100 +++ ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 1970-01-01 01:00:00.0 +0100 @@ -1,92 +0,0 @@ -Description: Upstream changes introduced in version 20071106-2 - This patch has been created by dpkg-source during the package build. - Here's the last changelog entry, hopefully it gives details on why - those changes were made: - . - ttf-tuffy (20071106-2) unstable; urgency=low - . - [ Christian Perrier ] - * Switch to 3.0 (quilt) source format - * Update Standards to 3.8.3 (checked) - * Drop defoma use - . - [ Fabian Greffrath ] - * debian/clean: - + New file. Delete *.otf as well, as they are not created from the patched - sources. - * debian/compat: - + Raised debhelper compatibility to 7. - * debian/control: - + Changed section to fonts. - + Set Maintainer to Debian Fonts Task Force and added myself to Uploaders. - + Updated my email address. - + Added Vcs-Svn and Vcs-Browser fields. - + Raised Build-Depends to debhelper (= 7.0.50~) and quilt (= 0.46-7). - + Removed versioned Build-Depends-Indep on defoma. - + Changed Build-Depends-Indep to fontforge-nox | fontforge. - + Bumped Standards-Version to 3.8.2. - * debian/copyright: - + Coverted into a machine-readable format, relicensed the Debian packaging - under the GNU All-Permissive license and added license information for - the FontForge script. - * debian/control, debian/patches/*, debian/rules: - + Switched from dpatch to quilt. - * debian/postinst: - + Removed. No need to manually regenerate the font cache anymore, since - fontconfig (2.6.0-4) already registered a trigger. - * debian/rules: - + Converted from cdbs to debhelper 7.2. - * debian/ttf-tuffy.{defoma-hints,install}: - + Renamed from debian/defoma-hints and debian/install. - . - The person named in the Author field signed this changelog entry. -Author: Fabian Greffrath fabian+deb...@greffrath.com - -The information above should follow the Patch Tagging Guidelines, please -checkout http://dep.debian.net/deps/dep3/ to learn about the format. Here -are templates for supplementary fields that you might want to add: - -Origin: vendor|upstream|other, url of original patch -Bug: url in upstream bugtracker -Bug-Debian: http://bugs.debian.org/bugnumber -Forwarded: no|not-needed|url proving that it has been forwarded -Reviewed-By: name and email of someone
Re: Bug#597864: libproxy0 not functional without libmozjs2d
Le mercredi 06 octobre 2010 à 08:12 +0200, Mike Hommey a écrit : Does that mean libproxy will depend (as in Depends control field) on webkit ? That's going to be a problem later, because iceweasel 4.0 may use libproxy (I enabled it, but I'm not entirely sure I'll keep it that way). No. It doesn’t depend on libmozjs either, it uses whatever is available on the system if it has been built against it. Cheers, -- .''`. : :' : “You would need to ask a lawyer if you don't know `. `' that a handshake of course makes a valid contract.” `--- J???rg Schilling -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1286350150.9021.0.ca...@meh
Re: Support for Natty and Wheezy in xen-tools for Squeeze?
On 10/06/2010 01:15 AM, Axel Beckert wrote: Hi Mehdi, Mehdi Dogguy wrote: On 22/09/2010 13:52, Axel Beckert wrote: Attached the debdiff. I don't expect any further changes for 4.2 (and therefore 4.2-1) except in changelogs, documentation, and source code comments. ok, please go ahead and let me know once the package has been accepted. 4.2 is released upstream now[1], 4.2-1 is uploaded to unstable: Debian FTP Masters wrote: Subject; xen-tools_4.2-1_amd64.changes ACCEPTED into unstable Unblocked. Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cac26d5.90...@dogguy.org
New PostgreSQL security/bug fix releases: 8.4.5, 8.3.12 [CVE-2010-3433]
Hello security and release teams, Yesterday, PostgreSQL released new security/bug fix microreleases. Please see http://www.postgresql.org/about/news.1244 for the details of the announcement. This fixes a privilege escalation through SECURITY DEFINER stored procedures, which is the SQL equivalent of suid root programs. I. e. this allows normal DB users to run arbitrary code as the postgres DB superuser, and therefore get unlimited access to the DB server (CVE-2010-3433). The DB admin explicitly needs to grant the right to run trusted PLs to the DB user (which is therefore already trusted up to some degree). However, this can become a major problem if there is a webserver app in front which allows injecting arbitrary SQL (which is a security problem by itself, of course, but still all too common). I uploaded 8.4.5-1 to unstable with urgency=medium (since this also fixes the usual metric ton of other bugs). Release team, can you please allow this into testing? I also uploaded 9.0.1-1 to unstable, but since 9.0 won't go into testing there is no further action here. I also prepared a lenny update at http://people.debian.org/~mpitt/psql/ It has a full debdiff, but there's a lot of noise in it, so I prepared a cleaner variant which is easier to read: $ filterdiff -x '*.gitignore' -x '*.cvsignore' -x '*/doc/*' -x '*.po' -x '*preproc.c' 8.3.11-0lenny1-8.3.12-0lenny1.debdiff|grep -v '^diff' 8.3.11-0lenny1-8.3.12-0lenny1-cleaned.debdiff http://people.debian.org/~mpitt/psql/8.3.11-0lenny1-8.3.12-0lenny1-cleaned.debdiff The changes in doc/ are mostly just the version bump and the new changelog (which is also present in the plain text HISTORY file). po files were re-merged and thus have a lot of reformatting noise. preproc.c is a huge yacc generated file, because the source preproc.y changed slightly, thus I only kept the .y file in the cleaned diff. This update passes the upstream test suite as well as my postgresql-common integration tests. Please let me know how to proceeed with the security update. Thank you! Martin -- Martin Pitt| http://www.piware.de Ubuntu Developer (www.ubuntu.com) | Debian Developer (www.debian.org) signature.asc Description: Digital signature
Re: Bug #566650: Please unblock dtc 0.32.2-1
On 10/06/2010 09:33 AM, Thomas Goirand wrote: Having no comments on my plans with v0.32.x when telling some RT members in August, I thought it was fine. I won't be able to write a proper reply to your message right now. But, I could not find the mail sent in August you're speaking about. Can you please show a public reference? Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cac317a.7090...@dogguy.org
status of libjpeg6b1 transition
Dear Debian release team, I would like to enquire about the status of the libjpeg6b1 transition. According to my computation, there 512 binaries packages in squeeze that link against libjpeg62, 466 of them have been rebuild against libjpeg6b1. So it remains 46 packages that did not. This corresponds to the 17 source packages, assumong I did not miss anything. abiword cegui-mk2 emboss hdf5 jpeginfo jpegoptim jpegpixi lsb open-font-design-toolkit pyabiword seaview spandsp uvccapture vdr warsow wings3d xmame Cheers, -- Bill. ballo...@debian.org Imagine a large red swirl here. signature.asc Description: Digital signature
Bug#599082: closed by Julien Cristau jcris...@debian.org (Re: Bug#599082: unblock: neverball/1.5.4-3)
Hi! * Debian Bug Tracking System ow...@bugs.debian.org [101005 18:33]: neverball has been sucessfully built on all archs. I would therefore ask you to unblock it. Grrr at adding patch systems. Unblocked. Sorry, I thought it would be the cleaner and therefore prefered approach. If you prefer it, I can reupload without patch system but direct changes. Thanks for your work anyway! Best Regards, Alexander signature.asc Description: Digital signature
Bug#599264: unblock: manpages-fr/3.25fr1.4-1 manpages-fr-dev/3.25fr1.4-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock packages manpages-fr and manpages-fr-dev, which are pure documentation packages. manpages-fr (3.25fr1.4-1) unstable; urgency=low [ Denis Barbier ] * New perkamon release 3.25-4. Improvements in French translations: + madvise.2: Drop a spurious paragraph + gethostname.2 proc.5: Fix typos + man-pages.7: Include translations of section names + *.7 Fix encoding (Closes: #599116) + Fix many plural forms * debian/control: Add missing trailing slash to Vcs-Browser. * debian/rules: In get-orig-source target, build .orig.tar.bz2 if it does not exist. * debian/control: Standards-Version: bumped to 3.9.1. No changes. [ Simon Paillard ] * debian/control: add myself as one of the Uploaders. -- Simon Paillard spaill...@debian.org Mon, 04 Oct 2010 23:09:40 +0200 On top of this, the build fix a lintian error (build issue in the previous version): # E manpage-not-compressed * usr/share/man/fr/man2/path_resolution.2 unblock manpages-fr/3.25fr1.4-1 manpages-fr-dev/3.25fr1.4-1 Thanks ! -- Simon Paillard -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006091625.ga13...@dedibox.ebzao.info
Bug#599255: unblock: zabbix/1.8.3-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Please unblock package zabbix Zabbix 1.8.3 includes a security fix (CVE-2010-2790) plus a series of important packaging fixes. zabbix (1:1.8.3-2) unstable; urgency=low * Added versioned build depdency on autotools-dev (closes: #598578) -- Christoph Haas h...@debian.org Thu, 30 Sep 2010 21:59:34 +0200 zabbix (1:1.8.3-1) unstable; urgency=low * New upstream release fixes security issue CVE-2010-2790 (closes: #594304) * Removed flash clock applet that upstream ships without source (closes: #591967) * Removed bashism from zabbix agent init.d file (closes: #581148) * Removed bashism from zabbix proxy mysql init.d file (closes: #581149) * Removed bashism from zabbix proxy pgsql init.d file (closes: #581150) * Removed bashism from zabbix server mysql init.d file (closes: #581151) * Removed bashism from zabbix server pgsql init.d file (closes: #581152) * Added weak dependency on mysql/postgresql in the LSB section of the init.d scripts for zabbix-server-mysql and zabbix-server-pgsql (closes: #578879) -- Christoph Haas h...@debian.org Sat, 21 Aug 2010 15:41:19 +0200 unblock zabbix/1.8.3-2 -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores) Locale: lang=ca_es.ut...@valencia, lc_ctype=ca_es.ut...@valencia (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006075738.2823.43366.report...@aigua.oskuro.net
Bug#599257: unblock: qpxtool/0.7.1.002-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package qpxtool 0.7.1.002-3, which fixes FTBFS on kfreebsd-* architectures. The changelog entry follows: qpxtool (0.7.1.002-3) unstable; urgency=low * Link against libcam on kfreebsd to fix FTBFS. * debian/control: - Properly replace Conflicts/Replaces with Breaks fields. - Bump Standards. * Update debian/copyright. -- Alessio Treglia ales...@debian.org Wed, 06 Oct 2010 09:09:15 +0200 unblock qpxtool/0.7.1.002-3 -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores) Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006080328.17810.73642.report...@alessio-laptop
Bug#599257: unblock: qpxtool/0.7.1.002-3
On 06/10/2010 10:03, Alessio Treglia wrote: * debian/control: - Properly replace Conflicts/Replaces with Breaks fields. AFAICS, you moved files from a package to another (in -1). So, to have a properly working upgrade, you need both Breaks *and* Replaces. Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cac4672.70...@dogguy.org
Bug#599269: unblock: gitolite/1.5.4-2
Package: release.debian.org Severity: wishlist Hi! Please unblock gitolite/1.5.4-2. These are the changes: #v+ gitolite (1.5.4-2) unstable; urgency=low * Re-add -p to mkdir for .ssh dir (LP: #634718) * New/updated debconf translations: - Portuguese by Américo Monteiro, sorry for taking the wrong file in the former upload (closes: #595312) - Japanese by Hideki Yamane (closes: #595457) - Vietnamese by Clytie Siddall (closes: #598592) #v- For your convenience, here is the link to the diff: http://git.deb.at/?p=pkg/gitolite.git;a=commitdiff;h=debian/1.5.4-2;hp=debian/1.5.4-1 Thanks in advance, Rhonda -- Lediglich 11 Prozent der Arbeitgeber sind der Meinung, dass jeder Mensch auch ein Privatleben haben sollte. -- http://www.karriere.at/artikel/884/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006095645.ga23...@anguilla.debian.or.at
Bug#599272: release.debian.org: unblock: libibumad/1.2.3-20090314-1.1
Package: release.debian.org Severity: normal Hi! Could you please unblock libibumad/1.2.3-20090314-1.1 as it fixes a rc bug: libibumad (1.2.3-20090314-1.1) unstable; urgency=high * Non-maintainer upload. * Add depenency on libibcommon-dev to libibumad-dev (Closes: #593414) * Urgency high due to RC bug fix -- Alexander Reichle-Schmehl toli...@debian.org Tue, 07 Sep 2010 14:37:43 +0200 Best regards, Alexander -- System Information: Debian Release: 5.0.6 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-xen-686 (SMP w/1 CPU core) Locale: lang=de...@euro, lc_ctype=de...@euro (charmap=ISO-8859-15) (ignored: LC_ALL set to de...@euro) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006101006.26921.39036.report...@melusine.alphascorpii.net
Re: New PostgreSQL security/bug fix releases: 8.4.5, 8.3.12 [CVE-2010-3433]
On Wed, Oct 6, 2010 at 09:40:51 +0200, Martin Pitt wrote: I uploaded 8.4.5-1 to unstable with urgency=medium (since this also fixes the usual metric ton of other bugs). Release team, can you please allow this into testing? Unblocked. Cheers, Julien signature.asc Description: Digital signature
Bug#595602: unblock: subdownloader/2.0.13-1
On Mon, Oct 4, 2010 at 11:06 AM, Julien Cristau jcris...@debian.org wrote: On Wed, Sep 15, 2010 at 16:39:30 +0200, Julien Cristau wrote: On Mon, Sep 13, 2010 at 23:37:57 +0100, Marco Rodrigues wrote: On Thu, Sep 9, 2010 at 3:49 PM, Julien Cristau jcris...@debian.org wrote: Why do some translated strings disappear from the greek translation? Looks like they were removed from the translator at Launchpad for some reason. I've just exported them from LP. https://translations.launchpad.net/subdownloader/trunk/+pots/subdownloader/el/+translate?start=0batch=10show=untranslatedfield.alternative_language=field.alternative_language-empty-marker=1old_show=untranslated They were removed and reviewed as empty. Is this a block or I need to upload a new version with that strings (which I don't know what they mean, because I don't know Greek) included? Well, I don't know Greek either, but I'm not happy to regress translations without an explanation from someone that does, or from the translator. Can we get this fixed please? So what should I do? Just include the missing translations ? Thanks -- Marco Rodrigues http://www.marblehole.com
Re: status of libjpeg6b1 transition
On Wed, Oct 6, 2010 at 10:35:30 +0200, Bill Allombert wrote: Dear Debian release team, I would like to enquire about the status of the libjpeg6b1 transition. I scheduled binNMUs in unstable a while back, and then for some of the holdouts in testing. According to my computation, there 512 binaries packages in squeeze that link against libjpeg62, 466 of them have been rebuild against libjpeg6b1. So it remains 46 packages that did not. This corresponds to the 17 source packages, assumong I did not miss anything. abiword Need to schedule +b2 in testing for a few more archs, and then binNMU python-abiword in unstable and testing. cegui-mk2 I'm not seeing that depending on libjpeg62 anywhere? emboss RC buggy, will have to get fixed or removed before release. hdf5 No libjpeg62 deps that I can see. jpeginfo jpegoptim jpegpixi Looks like I missed those 3. lsb open-font-design-toolkit False positives. pyabiword See above about abiword. seaview Non-free, leaf package, I think we can live without rebuilding that one. spandsp Doesn't have a libjpeg62 dep. uvccapture Will do. vdr Should be able to migrate from unstable if they fix the vdr-buildpackage script. warsow wings3d Will do. xmame Needs obsolete binaries removed from unstable. Cheers, Julien signature.asc Description: Digital signature
Bug#599281: unblock: apt-xapian-index/0.40
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package apt-xapian-index The current version in squeeze creates the index in /var/lib/ instead of /var/cache/. For people who backup /var/lib this can increase backup storage by an amount in the order of magnitude of 50Mb. It is also in violation of FHS. The bug is #594675. It is not RC because noone has raised its severity so far, and it'd be silly to raise it once the bug has been closed just to prove a point for the unblock request. However, I believe it makes sense to have this fix in squeeze. apt-xapian-index (0.40) unstable; urgency=low * Xapian cache moved to /var/cache/apt-xapian-index. Closes: #594675. -- Enrico Zini enr...@debian.org Sun, 03 Oct 2010 11:39:28 +0100 unblock apt-xapian-index/0.40 Ciao, Enrico -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006111419.908.16021.report...@localhost
Re: Bug #566650: Please unblock dtc 0.32.2-1
On 10/06/2010 01:09 PM, Thomas Goirand wrote: Mehdi Dogguy wrote: On 10/06/2010 09:33 AM, Thomas Goirand wrote: Having no comments on my plans with v0.32.x when telling some RT members in August, I thought it was fine. I won't be able to write a proper reply to your message right now. But, I could not find the mail sent in August you're speaking about. Can you please show a public reference? Regards, I wrote to one of the release team member, and he told me he forwarded it to all the team. I can't tell where's the public reference, because I didn't find it either... Now, that might well be the issue!!! No, it's not. I found the said mail with some other private mails and we asked you to raise your concern about dtc on debian-rele...@l.d.o and you didn't. Please make sure that your future mails are send to out mailing-list. I hate private requests for many reasons... one of them is transparency. FWIW, I don't read private mails for unblocks. Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cac5f7e.4040...@dogguy.org
Bug#599257: unblock: qpxtool/0.7.1.002-3
On Wed, Oct 6, 2010 at 11:50 AM, Mehdi Dogguy me...@dogguy.org wrote: AFAICS, you moved files from a package to another (in -1). So, to have a properly working upgrade, you need both Breaks *and* Replaces. You're right, fixed. Changes: qpxtool (0.7.1.002-4) unstable; urgency=low . * We need both Breaks and Replaces fields. -- Alessio Treglia ales...@debian.org Debian Ubuntu Developer | Homepage: http://www.alessiotreglia.com 0FEC 59A5 E18E E04F 6D40 593B 45D4 8C7C DCFC 3FD0 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/aanlktimfmcraoavek6hxnshvcp+2z1xqshgvmqwvp...@mail.gmail.com
Bug#599257: marked as done (unblock: qpxtool/0.7.1.002-3)
Your message dated Wed, 06 Oct 2010 13:43:40 +0200 with message-id 4cac60ec.1060...@dogguy.org and subject line Re: Bug#599257: unblock: qpxtool/0.7.1.002-3 has caused the Debian Bug report #599257, regarding unblock: qpxtool/0.7.1.002-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599257: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599257 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package qpxtool 0.7.1.002-3, which fixes FTBFS on kfreebsd-* architectures. The changelog entry follows: qpxtool (0.7.1.002-3) unstable; urgency=low * Link against libcam on kfreebsd to fix FTBFS. * debian/control: - Properly replace Conflicts/Replaces with Breaks fields. - Bump Standards. * Update debian/copyright. -- Alessio Treglia ales...@debian.org Wed, 06 Oct 2010 09:09:15 +0200 unblock qpxtool/0.7.1.002-3 -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores) Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On 10/06/2010 01:19 PM, Alessio Treglia wrote: On Wed, Oct 6, 2010 at 11:50 AM, Mehdi Dogguyme...@dogguy.org wrote: AFAICS, you moved files from a package to another (in -1). So, to have a properly working upgrade, you need both Breaks *and* Replaces. You're right, fixed. Changes: qpxtool (0.7.1.002-4) unstable; urgency=low . * We need both Breaks and Replaces fields. Unblocked. Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ ---End Message---
Re: status of libjpeg6b1 transition
On Wed, Oct 6, 2010 at 12:55:29 +0200, Julien Cristau wrote: jpeginfo jpegoptim jpegpixi Looks like I missed those 3. Scheduled. uvccapture Will do. Scheduled. warsow wings3d Will do. warsow is ood in unstable on ia64 (#593700) which will prevent a binNMU in testing. wings3d scheduled. xmame Needs obsolete binaries removed from unstable. Bug filed, but this doesn't seem to be whitelisted so won't be autobuilt. We can probably ignore it. Cheers, Julien signature.asc Description: Digital signature
Bug#599285: marked as done (nmu: cduce_0.5.3-2+b2)
Your message dated Wed, 06 Oct 2010 14:25:39 +0200 with message-id 4cac6ac3.1050...@dogguy.org and subject line Re: Bug#599285: nmu: cduce_0.5.3-2+b2 has caused the Debian Bug report #599285, regarding nmu: cduce_0.5.3-2+b2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599285: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599285 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu cduce_0.5.3-2+b2 . ALL . -m rebuild to update curl dependency This should solve also close 599284. Thanks Sylvain Le Gall -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-bpo.5-amd64 (SMP w/3 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On 10/06/2010 01:56 PM, Sylvain Le Gall wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu cduce_0.5.3-2+b2 . ALL . -m rebuild to update curl dependency This should solve also close 599284. Scheduled. Regards, -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ ---End Message---
Re: qt4-x11 unblock request
On Sun, Oct 3, 2010 at 16:31:18 +0200, Julien Cristau wrote: [cc:ing the qt maintainers] On Sat, Oct 2, 2010 at 00:43:44 +0200, Julien Cristau wrote: On Fri, Oct 1, 2010 at 23:43:17 +0200, Moritz Muehlenhoff wrote: qt4-x11/4:4.6.3-2 - CVE-2010-2621 Moves a file from libqt4-dev to libqt4-dbus, needs a Replaces. Looks ok otherwise. 4:4.6.3-3 unblocked. Cheers, Julien signature.asc Description: Digital signature
Bug#599293: unblock: liblatex-driver-perl/0.08-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Release Team (Please CC debian-p...@lists.debian.org on replies) Please unblock package liblatex-driver-perl liblatex-driver-perl has bug #599251 which when building not in a chroot or sbuild, it waits interactively for confirmation of the paths to e.g. /usr/bin/latex. http://bugs.debian.org/599251 I have created the patch for it, and will/let upload the package to unstable via a DD of pkg-perl group. Here is the diffstat: debian/patches/accept-interactive-questions.patch | 20 ++ debian/patches/fix-spelling-errors-in-manpage.patch | 28 liblatex-driver-perl-0.08/debian/changelog | 25 + liblatex-driver-perl-0.08/debian/control|9 ++ liblatex-driver-perl-0.08/debian/copyright | 24 - liblatex-driver-perl-0.08/debian/patches/series |2 + liblatex-driver-perl-0.08/debian/rules |2 - 7 files changed, 92 insertions(+), 18 deletions(-) unblock liblatex-driver-perl/0.08-2 Find attached the debdiff inbetween the prepared version and the current version in unstable. Could you plase unblock it? Bests and thanks for your work! Salvatore -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.26-2-amd64 (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash diff -u liblatex-driver-perl-0.08/debian/control liblatex-driver-perl-0.08/debian/control --- liblatex-driver-perl-0.08/debian/control +++ liblatex-driver-perl-0.08/debian/control @@ -2,7 +2,7 @@ Section: perl Priority: optional Build-Depends: debhelper (= 7.0.50), quilt (= 0.46-7) -Build-Depends-Indep: perl (= 5.6.0-12), +Build-Depends-Indep: perl, libexception-class-perl, libclass-accessor-perl, libfile-slurp-perl, @@ -12,12 +12,12 @@ libtest-pod-coverage-perl (= 1.00), libtest-perl-critic-perl, texlive-latex-base, - texlive-base-bin, + texlive-binaries, texlive-latex-extra, ghostscript Maintainer: Debian Perl Group pkg-perl-maintain...@lists.alioth.debian.org Uploaders: Salvatore Bonaccorso salvatore.bonacco...@gmail.com -Standards-Version: 3.8.1 +Standards-Version: 3.9.1 Homepage: http://search.cpan.org/dist/LaTeX-Driver/ Vcs-Svn: svn://svn.debian.org/pkg-perl/trunk/liblatex-driver-perl/ Vcs-Browser: http://svn.debian.org/viewsvn/pkg-perl/trunk/liblatex-driver-perl/ @@ -25,13 +25,12 @@ Package: liblatex-driver-perl Architecture: all Depends: ${perl:Depends}, ${misc:Depends}, - perl-modules, libexception-class-perl, libclass-accessor-perl, libfile-slurp-perl, libtemplate-perl, texlive-latex-base, - texlive-base-bin, + texlive-binaries, ghostscript Description: driver module that encapsulates the details of formatting a LaTeX document The LaTeX::Driver module encapsulates the details of invoking the LaTeX diff -u liblatex-driver-perl-0.08/debian/copyright liblatex-driver-perl-0.08/debian/copyright --- liblatex-driver-perl-0.08/debian/copyright +++ liblatex-driver-perl-0.08/debian/copyright @@ -1,18 +1,18 @@ -Format-Specification: http://dep.debian.net/deps/dep5/ +Format-Specification: http://svn.debian.org/wsvn/dep/web/deps/dep5.mdwn?op=filerev=135 Maintainer: Andrew Ford a.f...@ford-mason.co.uk Source: http://search.cpan.org/dist/LaTeX-Driver/ Name: LaTeX-Driver Files: * Copyright: 2009, Ford Mason Ltd. All Rights Reserved. - 2007, Andrew Ford. All Rights Reserved. - Portions Copyright, 1996-2007 Andy Wardley. All Rights Reserved. + 2007, Andrew Ford. All Rights Reserved. + Portions Copyright, 1996-2007 Andy Wardley. All Rights Reserved. License: Artistic or GPL-1+ Files: lib/LaTeX/Driver.pm Copyright: 2009 Ford Mason Ltd. All Rights Reserved. - 2006-2007, Andrew Ford. All Rights Reserved. - Portions Copyright, 1996-2006, Andy Wardley. All Rights Reserved. + 2006-2007, Andrew Ford. All Rights Reserved. + Portions Copyright, 1996-2006, Andy Wardley. All Rights Reserved. License: Artistic or GPL-1+ Files: lib/LaTeX/Driver/* scripts/* t/lib/Test/LaTeX/Driver.pm @@ -23,18 +23,18 @@ -Copyright: 2009, Salvatore Bonaccorso salvatore.bonacco...@gmail.com +Copyright: 2009, 2010, Salvatore Bonaccorso salvatore.bonacco...@gmail.com License: Artistic or GPL-1+ License: Artistic This program is free software; you can redistribute it and/or modify it under the terms of the Artistic License, which comes with Perl. -X-Comment: - On Debian GNU/Linux systems, the complete text of the Artistic License - can be found in `/usr/share/common-licenses/Artistic' + . + On Debian systems, the complete text of the Artistic License can be + found in `/usr/share/common-licenses/Artistic'. License: GPL-1+ This program is free software; you can
Bug#599307: unblock: jblas/1.1.1-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package jblas jblas 1.0.2 is currently in squeeze, is not working whenever complex numbers are returned as results. So upstream fixed that in version 1.1-1 and filed an important bug. I fixed that in jblas 1.1-1 and the package got unblocked. In the meantime upstream made another bugfix release - version 1.1.1 which I uploaded to unstable under version 1.1.1-1. Now atlas transitioned into testing but jblas does not because of this recent upload (waiting 20 days without bugreports). Since this package has no rdepends and is new in squeeze it should be pretty safe to upgrade even to this new version. Could you please unblock it? unblock jblas/1.1.1-1 -- System Information: Debian Release: squeeze/sid APT prefers oldstable APT policy: (500, 'oldstable'), (500, 'testing'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32.21-sonne (SMP w/2 CPU cores; PREEMPT) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006151254.3353.57295.report...@localhost.localdomain
Bug#599308: unblock: dma/0.0.2010.06.17-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Hi, Please unblock package dma IMHO, bug #599172, which makes dma-migrate simply not run on PowerPC and possibly other architectures with unsigned char by default, just might be serious enough to warrant fixing during the freeze. I'm attaching a debdiff for the next (not yet uploaded) revision of the Debian dma package; if I'm reading the protocol right, I'm not supposed to upload it to unstable unless you give me permission to, and say you'll allow it to trickle down into testing :) The diff is quite trivial - basically a char to int conversion for a variable used to hold the getopt(3) return value. As I said in the bug comments itself, this is a mistake I hadn't made for the past well nigh ten years; quite embarrassing :/ So... should I upload -4 to fix it, or is it too late now? :) Thanks in advance for your time, and keep up the great work! unblock dma/0.0.2010.06.17-4 -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (990, 'testing'), (500, 'oldstable'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/2 CPU cores) Locale: LANG=bg_BG.UTF-8, LC_CTYPE=bg_BG.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash diffstat for dma-0.0.2010.06.17-4 changelog |8 control |4 ++-- migrate/dma-migrate.c |4 +++- 3 files changed, 13 insertions(+), 3 deletions(-) diff -Nru dma-0.0.2010.06.17/debian/changelog dma-0.0.2010.06.17/debian/changelog --- dma-0.0.2010.06.17/debian/changelog 2010-07-27 13:34:28.0 +0300 +++ dma-0.0.2010.06.17/debian/changelog 2010-10-06 17:30:31.0 +0300 @@ -1,3 +1,11 @@ +dma (0.0.2010.06.17-4) unstable; urgency=low + + * Fix an infinite loop in dma-migrate if char is unsigned. +Closes: #599172 + * Switch to Git and point the Vcs-* fields to Gitorious. + + -- Peter Pentchev r...@ringlet.net Wed, 06 Oct 2010 17:30:29 +0300 + dma (0.0.2010.06.17-3) unstable; urgency=low * Update the debconf translations: diff -Nru dma-0.0.2010.06.17/debian/control dma-0.0.2010.06.17/debian/control --- dma-0.0.2010.06.17/debian/control 2010-07-27 13:12:22.0 +0300 +++ dma-0.0.2010.06.17/debian/control 2010-10-06 17:21:05.0 +0300 @@ -6,8 +6,8 @@ Build-Depends: debhelper (= 7.0.50), byacc, dpkg-dev (= 1.15.7~), flex, hardening-wrapper, liblockfile-dev, libssl-dev, po-debconf Standards-Version: 3.9.1 Homepage: http://devel.ringlet.net/mail/dma/ -Vcs-Svn: http://svn.ringlet.net/svn/ringlet/mail/dma/trunk/dma-pkg/debian/ -Vcs-Browser: http://svn.ringlet.net/v/ringlet/mail/dma/trunk/dma-pkg/debian/ +Vcs-Git: git://gitorious.org/dma-roam/pkg-debian.git +Vcs-Browser: http://gitorious.org/dma-roam/pkg-debian Package: dma Architecture: any diff -Nru dma-0.0.2010.06.17/debian/migrate/dma-migrate.c dma-0.0.2010.06.17/debian/migrate/dma-migrate.c --- dma-0.0.2010.06.17/debian/migrate/dma-migrate.c 2010-06-18 17:58:48.0 +0300 +++ dma-0.0.2010.06.17/debian/migrate/dma-migrate.c 2010-10-06 17:06:47.0 +0300 @@ -71,7 +71,7 @@ { const char *spooldir; int hflag, Vflag, errs, fd, res; - char ch; + int ch; DIR *d; struct dirent *e; struct stat sb; @@ -99,7 +99,9 @@ break; case '?': + default: usage(1); +/* NOTREACHED */ } if (Vflag) version(); signature.asc Description: Digital signature
Bug#599308: unblock: dma/0.0.2010.06.17-4
On Wed, Oct 06, 2010 at 05:57:55PM +0300, Peter Pentchev wrote: So... should I upload -4 to fix it, or is it too late now? :) Thanks in advance for your time, and keep up the great work! Please upload and ping us when it got accepted. Kind regards, Philipp Kern signature.asc Description: Digital signature
Bug#599315: RM: qmk-groundstation/1.0.1-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Hi, i am the maintainer of qmk-groundstation. Please remove it from testing because i think it is not ready for a stable release, for details see Bug #599258. Regards, Thomas -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing'), (190, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.36-rc6-s710+ (SMP w/4 CPU cores) Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006153046.12664.56329.report...@s710.lan
Bug#599315: marked as done (RM: qmk-groundstation/1.0.1-2)
Your message dated Wed, 6 Oct 2010 18:26:50 +0200 with message-id 20101006162650.gw10...@radis.liafa.jussieu.fr and subject line Re: Bug#599315: RM: qmk-groundstation/1.0.1-2 has caused the Debian Bug report #599315, regarding RM: qmk-groundstation/1.0.1-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599315: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599315 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Hi, i am the maintainer of qmk-groundstation. Please remove it from testing because i think it is not ready for a stable release, for details see Bug #599258. Regards, Thomas -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing'), (190, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.36-rc6-s710+ (SMP w/4 CPU cores) Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On Wed, Oct 6, 2010 at 17:30:46 +0200, Thomas Schmidt wrote: i am the maintainer of qmk-groundstation. Please remove it from testing because i think it is not ready for a stable release, for details see Bug #599258. Removal hint added, thanks. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Re: Possible update of libnss3
On Wed, Sep 29, 2010 at 09:37:24 +0200, Mike Hommey wrote: - upload 3.12.8 to unstable with the upstream workaround for #592315 and update through standard testing migration. Let's do this. Cheers, Julien signature.asc Description: Digital signature
Bug#595629: unblock: xmame/0.106-3.2
On Mon, Oct 4, 2010 at 18:27:33 +0200, Christian PERRIER wrote: Quoting Julien Cristau (jcris...@debian.org): Ping. Are you requesting removal of the obsolete binaries, or working on getting the package built? Sorry, neither of those. After getting your answer, I moved the package to the crap that won't probably ever be fixed and did nothing. It took all of 90 minutes from filing an ftp.d.o bug to the old binaries being gone. I have trouble calling that never. IMHO, the unnblock request bug can be closed. Do you still want the package updated? Cheers, Julien signature.asc Description: Digital signature
Bug#598664: marked as done (unblock: lastfm/1:1.5.4.26862+dfsg-5)
Your message dated Wed, 6 Oct 2010 18:43:37 +0200 with message-id 20101006164337.gz10...@radis.liafa.jussieu.fr and subject line Re: Bug#598664: unblock: lastfm/1:1.5.4.26862+dfsg-5 has caused the Debian Bug report #598664, regarding unblock: lastfm/1:1.5.4.26862+dfsg-5 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 598664: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598664 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Please unblock package lastfm It contains a security relevant bugfix: CVE-2010-3362 (#598294) unblock lastfm/1:1.5.4.26862+dfsg-5 -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.35-trunk-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On Mon, Oct 4, 2010 at 13:59:31 -0700, John Stamp wrote: On Sun, Oct 03, 2010 at 04:01:11PM +0200, Julien Cristau wrote: On Thu, Sep 30, 2010 at 14:47:46 -0700, John Stamp wrote: Please unblock package lastfm It contains a security relevant bugfix: CVE-2010-3362 (#598294) It also contains a bunch of other unrelated changes, not documented in the changelog. Yikes. I'm sorry about that. I backed out the undocumented patches and uploaded -6, which now only adds the fix for CVE-2010-3362. Unblocked by Adam. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Re: Please unblock cheese 2.30.1-2
On Tue, Oct 5, 2010 at 00:16:57 +0200, Emilio Pozuelo Monfort wrote: Hi, Please unblock cheese 2.30.1-2. The changelog entry follows. Unblocked. Cheers, Julien signature.asc Description: Digital signature
Re: pre-approval for perl/5.10.1-15
On 10/06/2010 12:47 PM, Niko Tyni wrote: Hi release team, Hi Niko would you be OK with some or all of these changes for squeeze? perl (5.10.1-15) UNRELEASED; urgency=low . * Include the Text::Tabs license in debian/copyright. Thanks to v.nix.is. (Closes: #596844) * Downgrade the 'make' recommendation to a suggestion to avoid pulling it in by default after all. (Closes: #596734) (Reopens: #293908) * Put the libfile-spec-perl conflict version in line with the separate package, which uses four digits. (Closes: #595121) * Squelch useless locale warnings during package maintainer scripts. (Closes: #508764) Yes, please upload and ping us again when uploaded. Cheers Luk -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cacaa60.8020...@debian.org
Re: Please unblock libvirt 0.8.3-2
On Tue, Oct 5, 2010 at 09:16:07 +0200, Guido Günther wrote: diff -Nru libvirt-0.8.3/debian/libvirt-bin.NEWS libvirt-0.8.3/debian/libvirt-bin.NEWS --- libvirt-0.8.3/debian/libvirt-bin.NEWS 2010-08-06 23:06:40.0 +0200 +++ libvirt-0.8.3/debian/libvirt-bin.NEWS 2010-09-29 13:29:13.0 +0200 @@ -7,3 +7,19 @@ anything. -- Guido Günther a...@sigxcpu.org Mon, 12 Jul 2010 19:58:35 +0200 + +libvirt (0.8.3-2) unstable; urgency=low + + Disk format probing is disabled now by default for security reasons + (CVE-2010-2237). You need to explicitly add a driver type element to your + disk devices in the domain XML: + + disk ... + driver name='qemu' type='qcow2'/ + ... + /disk + + Alternatively you can reenable probing by setting allow_disk_format_probing=1 + in /etc/libvirt/qemu.conf but this is insecure. + + -- Guido Günther a...@sigxcpu.org Wed, 29 Sep 2010 13:10:02 +0200 That seems backwards, I'd expect the new entry to go at the top? Does apt-listchanges handle that correctly? Cheers, Julien signature.asc Description: Digital signature
Re: Removing
On Tue, Oct 5, 2010 at 16:19:04 +0200, Emilio Pozuelo Monfort wrote: Hi, In our effort to remove old libraries, I would like to remove libgmime2.2a-cil from gmime2.2. We would have liked not to ship gmime2.2 with Squeeze at all, but that wasn't possible. However the Mono bindings are not used by any package, and they are superseded by the 2.4 bindings, so I would like to know whether you would accept such a change into Squeeze. Go ahead. Cheers, Julien signature.asc Description: Digital signature
Bug#599210: marked as done (unblock: munin/1.4.5-3)
Your message dated Wed, 6 Oct 2010 19:24:52 +0200 with message-id 20101006172452.gf10...@radis.liafa.jussieu.fr and subject line Re: Bug#599210: unblock: munin/1.4.5-3 has caused the Debian Bug report #599210, regarding unblock: munin/1.4.5-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599210: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599210 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock x-debbugs-cc: mu...@packages.debian.org Hi, please unblock munin/1.4.5-3 which only has targeted changes for squeeze: three bashisms in plugins are fixed, the ejabberd plugin has been fixed to work with the ejabberd version in squeeze, the way apache is restarted has been improved plus a documentation update. If they didnt only affect one plugin, 594695 and 595899 would be important and 597599 serious. munin (1.4.5-3) unstable; urgency=low [ Tom Feiner ] * Added patch 101-dash-bash-fw_conntrack.patch, fixing fw_conntrack plugin which reports incorrect values for total.warning and total.critical (Closes: #594695) * Added patch 102-snort-bashism.patch fixing snort_* config bashism. Thanks to Gerald Turner for the patch (Closes: #595899). * Existence of /etc/apache2/conf.d/ does not mean apache2 is installed. (Closes: #581363) * Add patch to adapt ejabberd CLI to ejabberd version found in squeeze. Thanks to Gerald Turner for the patch! (Closes: #597599) [ Holger Levsen ] * Added some tipps to get started into README.Debian. (Closes: #594528) Thanks, Holger signature.asc Description: This is a digitally signed message part. ---End Message--- ---BeginMessage--- On Tue, Oct 5, 2010 at 18:53:32 +0200, Holger Levsen wrote: munin (1.4.5-3) unstable; urgency=low Unblocked. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Bug#599226: marked as done (unblock: bidiui/0.9.5-1)
Your message dated Wed, 6 Oct 2010 19:27:57 +0200 with message-id 20101006172757.gg10...@radis.liafa.jussieu.fr and subject line Re: Bug#599226: unblock: bidiui/0.9.5-1 has caused the Debian Bug report #599226, regarding unblock: bidiui/0.9.5-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599226: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599226 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package bidiui bidiui provdies an extension for icedove. The current version of bidiui in testing doesn't support icedove 3.0.x (which is also in testing). The version in sid (0.9.5-1) does support 3.0.x. There's no point in releasing with the current version of bidiui, so please unblock the package or remove the current one from testing. Thanks. unblock bidiui/0.9.5-1 -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On Tue, Oct 5, 2010 at 22:42:27 +0200, Lior Kaplan wrote: unblock bidiui/0.9.5-1 Done. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Bug#599307: unblock: jblas/1.1.1-1
On Wed, Oct 6, 2010 at 17:12:54 +0200, Soeren Sonnenburg wrote: jblas 1.0.2 is currently in squeeze, is not working whenever complex numbers are returned as results. So upstream fixed that in version 1.1-1 and filed an important bug. I fixed that in jblas 1.1-1 and the package got unblocked. In the meantime upstream made another bugfix release - version 1.1.1 which I uploaded to unstable under version 1.1.1-1. It would have been nice to let the unblocked version transition first... Now atlas transitioned into testing but jblas does not because of this recent upload (waiting 20 days without bugreports). Since this package has no rdepends and is new in squeeze it should be pretty safe to upgrade even to this new version. Could you please unblock it? unblock jblas/1.1.1-1 + +/** Get matrix element, passing the variable to store the result. */ +public ComplexDouble get(int rowIndex, int columnIndex, ComplexDouble result) { +return get(index(rowIndex, columnIndex)); +} Am I missing something, or is that not using result at all? Cheers, Julien signature.asc Description: Digital signature
Bug#599272: marked as done (release.debian.org: unblock: libibumad/1.2.3-20090314-1.1)
Your message dated Wed, 06 Oct 2010 18:59:08 +0100 with message-id 1286387948.9555.30.ca...@hathi.jungle.funky-badger.org and subject line Re: Bug#599272: release.debian.org: unblock: libibumad/1.2.3-20090314-1.1 has caused the Debian Bug report #599272, regarding release.debian.org: unblock: libibumad/1.2.3-20090314-1.1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599272: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599272 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal Hi! Could you please unblock libibumad/1.2.3-20090314-1.1 as it fixes a rc bug: libibumad (1.2.3-20090314-1.1) unstable; urgency=high * Non-maintainer upload. * Add depenency on libibcommon-dev to libibumad-dev (Closes: #593414) * Urgency high due to RC bug fix -- Alexander Reichle-Schmehl toli...@debian.org Tue, 07 Sep 2010 14:37:43 +0200 Best regards, Alexander -- System Information: Debian Release: 5.0.6 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-xen-686 (SMP w/1 CPU core) Locale: lang=de...@euro, lc_ctype=de...@euro (charmap=ISO-8859-15) (ignored: LC_ALL set to de...@euro) Shell: /bin/sh linked to /bin/bash ---End Message--- ---BeginMessage--- On Wed, 2010-10-06 at 12:10 +0200, Alexander Reichle-Schmehl wrote: Could you please unblock libibumad/1.2.3-20090314-1.1 as it fixes a rc bug: libibumad (1.2.3-20090314-1.1) unstable; urgency=high * Non-maintainer upload. * Add depenency on libibcommon-dev to libibumad-dev (Closes: #593414) Unblocked. Regards, Adam ---End Message---
Bug#599269: marked as done (unblock: gitolite/1.5.4-2)
Your message dated Wed, 06 Oct 2010 19:04:30 +0100 with message-id 1286388270.9555.41.ca...@hathi.jungle.funky-badger.org and subject line Re: Bug#599269: unblock: gitolite/1.5.4-2 has caused the Debian Bug report #599269, regarding unblock: gitolite/1.5.4-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599269: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599269 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: wishlist Hi! Please unblock gitolite/1.5.4-2. These are the changes: #v+ gitolite (1.5.4-2) unstable; urgency=low * Re-add -p to mkdir for .ssh dir (LP: #634718) * New/updated debconf translations: - Portuguese by Américo Monteiro, sorry for taking the wrong file in the former upload (closes: #595312) - Japanese by Hideki Yamane (closes: #595457) - Vietnamese by Clytie Siddall (closes: #598592) #v- For your convenience, here is the link to the diff: http://git.deb.at/?p=pkg/gitolite.git;a=commitdiff;h=debian/1.5.4-2;hp=debian/1.5.4-1 Thanks in advance, Rhonda -- Lediglich 11 Prozent der Arbeitgeber sind der Meinung, dass jeder Mensch auch ein Privatleben haben sollte. -- http://www.karriere.at/artikel/884/ ---End Message--- ---BeginMessage--- On Wed, 2010-10-06 at 11:56 +0200, Gerfried Fuchs wrote: Please unblock gitolite/1.5.4-2. These are the changes: #v+ gitolite (1.5.4-2) unstable; urgency=low * Re-add -p to mkdir for .ssh dir (LP: #634718) * New/updated debconf translations: - Portuguese by Américo Monteiro, sorry for taking the wrong file in the former upload (closes: #595312) - Japanese by Hideki Yamane (closes: #595457) - Vietnamese by Clytie Siddall (closes: #598592) Unblocked. Regards, Adam ---End Message---
Re: Removing
On 06/10/10 19:18, Julien Cristau wrote: On Tue, Oct 5, 2010 at 16:19:04 +0200, Emilio Pozuelo Monfort wrote: Hi, In our effort to remove old libraries, I would like to remove libgmime2.2a-cil from gmime2.2. We would have liked not to ship gmime2.2 with Squeeze at all, but that wasn't possible. However the Mono bindings are not used by any package, and they are superseded by the 2.4 bindings, so I would like to know whether you would accept such a change into Squeeze. Go ahead. Uploaded, please unblock. TIA, Emilio -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cacb817.1070...@debian.org
Re: [php-maint] Freeze exception: php5
On Tue, Oct 5, 2010 at 22:37, Raphael Geissert geiss...@debian.org wrote: If you want ditch the work that has been done by upstream, my fellow maintainers, and other contributors, go ahead. Just beware that the current version in testing isn't ready. I would add that we know that it took us some time to get 5.3.3 out and we could have done better, but the php5 is very hard to maintain. Backporting security fixes is not a really nice thing to do, since php doesn't use any good VCS. And upstream tend to answer with test with latest cvs. Not to mention that php maintainers have high burnout rate (myself and sean is a nice example). And I think that Raphael did a great job pinpointing real changes between 5.3.2 and 5.3.3. So you should probably consider other measures for letting php 5.3.3 in than just diffstat output. Unfreezing 5.3.3 would not only make life easier for the maintainers, but also for the security team, and least but not last our users. Ondrej -- Ondřej Surý ond...@sury.org http://blog.rfc1925.org/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/aanlktiniydtnmqqo_jwj0wyoqhh8ddha6h4apx2kg...@mail.gmail.com
Re: Please unblock libvirt 0.8.3-2
On Wed, Oct 06, 2010 at 06:59:47PM +0200, Julien Cristau wrote: On Tue, Oct 5, 2010 at 09:16:07 +0200, Guido Günther wrote: diff -Nru libvirt-0.8.3/debian/libvirt-bin.NEWS libvirt-0.8.3/debian/libvirt-bin.NEWS --- libvirt-0.8.3/debian/libvirt-bin.NEWS 2010-08-06 23:06:40.0 +0200 +++ libvirt-0.8.3/debian/libvirt-bin.NEWS 2010-09-29 13:29:13.0 +0200 @@ -7,3 +7,19 @@ anything. -- Guido Günther a...@sigxcpu.org Mon, 12 Jul 2010 19:58:35 +0200 + +libvirt (0.8.3-2) unstable; urgency=low + + Disk format probing is disabled now by default for security reasons + (CVE-2010-2237). You need to explicitly add a driver type element to your + disk devices in the domain XML: + + disk ... + driver name='qemu' type='qcow2'/ + ... + /disk + + Alternatively you can reenable probing by setting allow_disk_format_probing=1 + in /etc/libvirt/qemu.conf but this is insecure. + + -- Guido Günther a...@sigxcpu.org Wed, 29 Sep 2010 13:10:02 +0200 That seems backwards, I'd expect the new entry to go at the top? Does apt-listchanges handle that correctly? You're right, that's backward. I've uploaded a new version (0.8.3-3) that also fixes two more bugs: libvirt (0.8.3-3) unstable; urgency=low * [178670a] Add $syslog to the list of Required-{Start,Stop} services also drop $local_fs since we already have $remote_fs * [4db7451] Don't hardcode netcat's -q option. (Closes: #573172) - thanks to Marc Deslauriers for the patch * [d4c46ee] Disable CHECKSUM rules not supported by Squeeze's iptables (Closes: #598330) * [dbc2609] Move new NEWS items to the top -- Guido Günther a...@sigxcpu.org Wed, 06 Oct 2010 19:47:46 +0200 #573172 really is a blocker for people connectiong to non Debian machines and #598330 confuses users thinking that might be the source of a problem they're seeing. I'd be great if this could go into Squeeze. Cheers, -- Guido -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006181423.ga...@bogon.sigxcpu.org
Re: Bug #566650: Please unblock dtc 0.32.2-1
Mehdi Dogguy wrote: On 10/06/2010 01:09 PM, Thomas Goirand wrote: Mehdi Dogguy wrote: On 10/06/2010 09:33 AM, Thomas Goirand wrote: Having no comments on my plans with v0.32.x when telling some RT members in August, I thought it was fine. I won't be able to write a proper reply to your message right now. But, I could not find the mail sent in August you're speaking about. Can you please show a public reference? Regards, I wrote to one of the release team member, and he told me he forwarded it to all the team. I can't tell where's the public reference, because I didn't find it either... Now, that might well be the issue!!! No, it's not. I found the said mail with some other private mails and we asked you to raise your concern about dtc on debian-rele...@l.d.o and you didn't. I know what I wrote, I know what has been written to me. I've been told that my message has been forwarded to the release team (however, it never has been written to me that it has been forwarded to a public list). It would take time (as I receive about 100 email a day and because I don't remember who wrote it to me), but I could search in my email backlog to prove it. But at the end, I don't see the point in discussing it: it doesn't solve any issue. I've underlined communication issues myself, and I agree it's also my fault too... Can we go forward and think of what can be done now, instead of arguing about the past (mis)communication? Please make sure that your future mails are send to out mailing-list. I hate private requests for many reasons... one of them is transparency. Debian has the culture of transparency for absolutely every single bit. However, it might not be suitable on all cases, and I haven't seen anywhere that this should be an enforced policy. In my case, I was kindly asking for an advice, and it was my preference to keep it private. Is this wrong? What's wrong in asking advices to the release team privately, and tell about my plans for the release, if I wish to do so? Just one example out of many I have in mind: I might dislike to have some of my business competitors to read, and forecast my next move. FWIW, I don't read private mails for unblocks. I understand that unblock requests have to stay public. Thomas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cacbd52.7030...@debian.org
Bug#599344: gramps package translation update
Package: release.debian.org I am requesting a freeze exception for gramps due to a translation update. The relevant portion of the changelog is: gramps (3.2.3-2) unstable; urgency=low * Updated Slovenian translation -- James (Jay) Treacy tre...@debian.org -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006183840.ga8...@debian.org
Re: New PostgreSQL security/bug fix releases: 8.4.5, 8.3.12 [CVE-2010-3433]
* Martin Pitt: Please let me know how to proceeed with the security update. Please upload the lenny part to security-master. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/87r5g3nnef@mid.deneb.enyo.de
Bug#599349: unblock: xsynth-dssi/0.9.2-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package xsynth-dssi 0.9.2-2, this makes the package able to build on kfreebsd-* architectures. xsynth-dssi (0.9.2-2) unstable; urgency=low * debian/control: Reintroduce libasound2-dev build-dependency as it's provided by liboss-salsa-dev on hurd,kfreebsd-* architectures. * debian/gbp.conf: Set sign-tags to True. * Bump Standards. -- Alessio Treglia ales...@debian.org Wed, 06 Oct 2010 16:28:35 +0200 unblock xsynth-dssi/0.9.2-2 -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores) Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006194156.6442.66424.report...@alessio-laptop
Bug#595629: unblock: xmame/0.106-3.2
Quoting Julien Cristau (jcris...@debian.org): It took all of 90 minutes from filing an ftp.d.o bug to the old binaries being gone. I have trouble calling that never. IMHO, the unnblock request bug can be closed. Do you still want the package updated? If that's technically possible without hassle, yes. Thanks for your work... signature.asc Description: Digital signature
Re: Please unblock libvirt 0.8.3-2
On Wed, Oct 6, 2010 at 20:14:23 +0200, Guido Günther wrote: libvirt (0.8.3-3) unstable; urgency=low The netcat patch is pretty ugly.. Unblocked. Cheers, Julien signature.asc Description: Digital signature
Re: Please unblock ttf-tuffy_20071106-3
Quoting Fabian Greffrath (fab...@greffrath.com): Hi -release, please let ttf-tuffy_20071106-3 migrate to testing. It removes a spurious patch that was introduced by wrong usage of source v3.0. It was unapplying 01-spurious-langnames.patch, which fixed a nasty upstream bug in the font source files. Please find the debdiff inlined: RT, see #599249... signature.asc Description: Digital signature
Bug#599308: unblock: dma/0.0.2010.06.17-4
On Wed, Oct 06, 2010 at 05:37:50PM +0200, Philipp Kern wrote: On Wed, Oct 06, 2010 at 05:57:55PM +0300, Peter Pentchev wrote: So... should I upload -4 to fix it, or is it too late now? :) Thanks in advance for your time, and keep up the great work! Please upload and ping us when it got accepted. Thanks a lot! It's uploaded, accepted, and built on pretty much all the architectures now. G'luck, Peter -- Peter Pentchev r...@space.bgr...@ringlet.netr...@freebsd.org PGP key:http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 When you are not looking at it, this sentence is in Spanish. signature.asc Description: Digital signature
Bug#595629: marked as done (unblock: xmame/0.106-3.2)
Your message dated Wed, 6 Oct 2010 22:37:48 +0200 with message-id 20101006203748.gb2...@radis.liafa.jussieu.fr and subject line Re: Bug#595629: unblock: xmame/0.106-3.2 has caused the Debian Bug report #595629, regarding unblock: xmame/0.106-3.2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 595629: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=595629 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Please unblock package xmame Yet another NMU originally aimed at fixing debconf translations. That one included a debhelper compatibility level bump from 4 to 7 and a few other fixes: * Build-Depend on pkg-config (workaround to avoid FTBFS as libesd0-dev does not depend on pkg-config) * Add dependencies on ${misc:Depends} to packages that were missing them. The goal is to properly cope with dependencies triggerred by the use of debhelper. The first is needed to avoid FTBFS, IIRC (that was one month ago!). The latter is a common and safe fix when debhelper is used. unblock xmame/0.106-3.2 -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/2 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On Wed, Oct 6, 2010 at 22:28:18 +0200, Christian PERRIER wrote: Quoting Julien Cristau (jcris...@debian.org): It took all of 90 minutes from filing an ftp.d.o bug to the old binaries being gone. I have trouble calling that never. IMHO, the unnblock request bug can be closed. Do you still want the package updated? If that's technically possible without hassle, yes. Thanks for your work... Unblocked. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Re: Accepted wireshark 1.2.10-2+squeeze1 (source i386)
2010/9/30 Adam D. Barratt a...@adam-barratt.org.uk: On Wed, 2010-09-29 at 23:28 +0200, Bálint Réczey wrote: There would be another path to go with wireshark. Would you like the idea of allowing 1.2.11-2 to go to testing if I fix the regression introduced by 1.2.11? Which of the fixes in 1.2.11 aren't (or are, if that's easier) including in the t-p-u package? I referenced the source patch for the changes in 1.2.10-2+squeeze1's changelog: * Backport changes from 1.2.11 - Fix segmentation fault (Closes: #597703) - 0004-Revert-rev-33697-it-s-not-necessary-check_col-is-NOT.patch - Fix inifinite loop in Bootstrap Protocol dissector - 0015-Pick-up-change-from-trunk.patch - - Fix crash in RTSP dissector - 0020-Copy-over-revisions-from-the-trunk.patch, (fix crash in RTSP dissector) - Fix crash when filtering packets based on expert info - 0020-Copy-over-revisions-from-the-trunk.patch, (fix crash in ftype-tvbuff.c) - Fix crash when generating PostScript output\ - 0022-Copy-over-revisions-from-the-trunk.patch The difference between 1.2.10-2+squeeze1 and 1.2.11-1 is still significant, but I think those are low-risk changes. I have uploaded 1.2.11-2 in the meantime: Changes: wireshark (1.2.11-2) unstable; urgency=low . * 25_fix-libsmi-workaround.patch: Fix the libsmi workaround by adding missing brackets. * backport fix for IP header checksum calculation regression introduced in 1.2.10 * [Debconf translation updates] - Vietnamese (Clytie Siddall). (Closes: #598498). [ Daniel T Chen ] * 22_lp606063-fix-assertion-capture_start.patch: Handle event handler being invoked recursively. Fix backported from upstream SVN r33906. Thanks, Gregor Beck! https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5126 (LP: #606063) I reverted the regression and added important fixes. (22_lp606063-fix-assertion-capture_start.patch is in squeeze already). I think 1.2.11-2 is a good candidate for being included in Squeeze and we could return to the unstable - testing migration path. Cheers, Balint
Bug#599308: marked as done (unblock: dma/0.0.2010.06.17-4)
Your message dated Wed, 6 Oct 2010 22:51:34 +0200 with message-id 20101006205134.ga32...@thrall.0x539.de and subject line Re: Bug#599308: unblock: dma/0.0.2010.06.17-4 has caused the Debian Bug report #599308, regarding unblock: dma/0.0.2010.06.17-4 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599308: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599308 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Hi, Please unblock package dma IMHO, bug #599172, which makes dma-migrate simply not run on PowerPC and possibly other architectures with unsigned char by default, just might be serious enough to warrant fixing during the freeze. I'm attaching a debdiff for the next (not yet uploaded) revision of the Debian dma package; if I'm reading the protocol right, I'm not supposed to upload it to unstable unless you give me permission to, and say you'll allow it to trickle down into testing :) The diff is quite trivial - basically a char to int conversion for a variable used to hold the getopt(3) return value. As I said in the bug comments itself, this is a mistake I hadn't made for the past well nigh ten years; quite embarrassing :/ So... should I upload -4 to fix it, or is it too late now? :) Thanks in advance for your time, and keep up the great work! unblock dma/0.0.2010.06.17-4 -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (990, 'testing'), (500, 'oldstable'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/2 CPU cores) Locale: LANG=bg_BG.UTF-8, LC_CTYPE=bg_BG.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash diffstat for dma-0.0.2010.06.17-4 changelog |8 control |4 ++-- migrate/dma-migrate.c |4 +++- 3 files changed, 13 insertions(+), 3 deletions(-) diff -Nru dma-0.0.2010.06.17/debian/changelog dma-0.0.2010.06.17/debian/changelog --- dma-0.0.2010.06.17/debian/changelog 2010-07-27 13:34:28.0 +0300 +++ dma-0.0.2010.06.17/debian/changelog 2010-10-06 17:30:31.0 +0300 @@ -1,3 +1,11 @@ +dma (0.0.2010.06.17-4) unstable; urgency=low + + * Fix an infinite loop in dma-migrate if char is unsigned. +Closes: #599172 + * Switch to Git and point the Vcs-* fields to Gitorious. + + -- Peter Pentchev r...@ringlet.net Wed, 06 Oct 2010 17:30:29 +0300 + dma (0.0.2010.06.17-3) unstable; urgency=low * Update the debconf translations: diff -Nru dma-0.0.2010.06.17/debian/control dma-0.0.2010.06.17/debian/control --- dma-0.0.2010.06.17/debian/control 2010-07-27 13:12:22.0 +0300 +++ dma-0.0.2010.06.17/debian/control 2010-10-06 17:21:05.0 +0300 @@ -6,8 +6,8 @@ Build-Depends: debhelper (= 7.0.50), byacc, dpkg-dev (= 1.15.7~), flex, hardening-wrapper, liblockfile-dev, libssl-dev, po-debconf Standards-Version: 3.9.1 Homepage: http://devel.ringlet.net/mail/dma/ -Vcs-Svn: http://svn.ringlet.net/svn/ringlet/mail/dma/trunk/dma-pkg/debian/ -Vcs-Browser: http://svn.ringlet.net/v/ringlet/mail/dma/trunk/dma-pkg/debian/ +Vcs-Git: git://gitorious.org/dma-roam/pkg-debian.git +Vcs-Browser: http://gitorious.org/dma-roam/pkg-debian Package: dma Architecture: any diff -Nru dma-0.0.2010.06.17/debian/migrate/dma-migrate.c dma-0.0.2010.06.17/debian/migrate/dma-migrate.c --- dma-0.0.2010.06.17/debian/migrate/dma-migrate.c 2010-06-18 17:58:48.0 +0300 +++ dma-0.0.2010.06.17/debian/migrate/dma-migrate.c 2010-10-06 17:06:47.0 +0300 @@ -71,7 +71,7 @@ { const char *spooldir; int hflag, Vflag, errs, fd, res; - char ch; + int ch; DIR *d; struct dirent *e; struct stat sb; @@ -99,7 +99,9 @@ break; case '?': + default: usage(1); +/* NOTREACHED */ } if (Vflag) version(); signature.asc Description: Digital signature ---End Message--- ---BeginMessage--- On Wed, Oct 06, 2010 at 11:06:46PM +0300, Peter Pentchev wrote: On Wed, Oct 06, 2010 at 05:37:50PM +0200, Philipp Kern wrote: On Wed, Oct 06, 2010 at 05:57:55PM +0300, Peter Pentchev wrote: So... should I upload -4 to fix it, or is it too late now? :) Thanks in advance for your time, and keep up the great work! Please upload and ping us when it got accepted. Thanks a lot! It's uploaded, accepted, and built on pretty much all the architectures now. Unblocked. Kind regards, Philipp Kern signature.asc Description: Digital signature ---End Message---
Re: [php-maint] Freeze exception: php5
On Tue, 2010-10-05 at 15:37 -0500, Raphael Geissert wrote: Pure debdiff is misleading: debdiff -w *dsc | filterdiff -x '*/tests/*' -x '*win32*' -x '*debian/*' -x '*TSRM/*' -x '*configure*' -x '*README*' -x '*NEWS*' -x '*pcrelib*' -x '*mysqlnd*' -x '*/build/*' -x '*oci8/*' -x '*libsqlite*' -x '*pear/*' -x '*litespeed*' -x '*milter*' -x '*nsapi*' -x '*dsp' -x '*dsw' -x '*vcproj' -x '*32' -x '*vc6' -x '*date/lib/*' -x '*Zend/zend_language_scanner.c' -x '*Zend/zend_ini_parser.output' -x '*Zend/zend_ini_parser.c' -x '*cp5022x*' - x '*jisx0201*' -x '*sjis*' -x '*sapi/fpm/*' | diffstat 277 files changed, 4307 insertions(+), 2052 deletions(-) Explanation: [...] sapi/fpm: new SAPI That's a rather quick dismissal of what appears to be completely new functionality comprising 10,000 lines of code (+ patches and packaging files), imho. Given that the package description even says that most people shouldn't install it, how much of an issue would not building it for Squeeze be? Not to mention that there's a regressions test suite. Talking about it: $ filterdiff -i '*/tests/*' -x '*oci8*' diff | diffstat | tail -n1 415 files changed, 8815 insertions(+), 2827 deletions(-) (it's the same poor changes metric that is used to rule out new versions, so I think it's fair if I include it.) It's not a case of ruling out changes based purely on the diffstat; it does provide a useful yardstick for many cases, however. If you want ditch the work that has been done by upstream, my fellow maintainers, and other contributors, go ahead. Just beware that the current version in testing isn't ready. Please can we try and keep the discussion constructive? Nobody wants to ditch work, but we need to balance that against the risks of including a larger update at this stage of the process. Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1286398773.9555.513.ca...@hathi.jungle.funky-badger.org
Unblock request: movabletype-opensource
Hello, I've just uploaded a new version of movabletype-opensource which fixes the RC bug #591975. Changelog follows: movabletype-opensource (4.3.4+dfsg-1) unstable; urgency=low * Remove non-free flash components from upstream tarball and include the NoStats plugin which disables their use in the application (closes: #591975) * Include information about how to re-enable the flash components in README.Debian -- Dominic Hargreaves d...@earth.li Wed, 06 Oct 2010 21:31:37 +0100 Please could you unblock movabletype-opensource/4.3.4+dfsg-1 Thanks, Dominic. -- Dominic Hargreaves | http://www.larted.org.uk/~dom/ PGP key 5178E2A5 from the.earth.li (keyserver,web,email) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006204608.ga4...@urchin.earth.li
Re: Bug #566650: Please unblock dtc 0.32.2-1
On Thu, Oct 07, 2010 at 02:17:54AM +0800, Thomas Goirand wrote: I know what I wrote, I know what has been written to me. I've been told that my message has been forwarded to the release team (however, it never has been written to me that it has been forwarded to a public list). It would take time (as I receive about 100 email a day and because I don't remember who wrote it to me), but I could search in my email backlog to prove it. 4c6a1df0.4040...@funlabs.org Please make sure that your future mails are send to out mailing-list. I hate private requests for many reasons... one of them is transparency. Debian has the culture of transparency for absolutely every single bit. However, it might not be suitable on all cases, and I haven't seen anywhere that this should be an enforced policy. You were told this (quoted with permission of faw): | We started discussing some aspects of PHP but we didn't talk about | DTC, we would really prefer to discuss it thru the list, to be open | and transparent about the process and to be fair with others | dealing with different aspects of the release process. You were also told: | I just want to tell you that you should do it rather earlier | than later. Even if it is a plan right now, you should make it | public an known so we can talk about it and have a public open | reference about the plan, goals and possible actions In my case, I was kindly asking for an advice, and it was my preference to keep it private. Is this wrong? What's wrong in asking advices to the release team privately, and tell about my plans for the release, if I wish to do so? Just one example out of many I have in mind: I might dislike to have some of my business competitors to read, and forecast my next move. Debian isn't about business competition. We did tell you to submit it to a public list, AFAICS you did not followup, not even stating such a reason, neither. FWIW, I don't read private mails for unblocks. I understand that unblock requests have to stay public. Aha. Kind regards, Philipp Kern signature.asc Description: Digital signature
Re: Freeze exception quassel 0.7.1-1
On Sun, 2010-10-03 at 13:28 +0200, Julien Cristau wrote: On Wed, Sep 29, 2010 at 20:14:48 +0200, Thomas Müller wrote: Please find the requested diff attached. It's quite large for a t-p-u upload, but seems less insane than the alternatives, so please go ahead with the upload. This is broken: +quassel (0.6.3-1) testing; urgency=high + + * New upstream bug fix release + * Possible DoS attack vulnerability for multiple CTCP requests: +http://bugs.quassel-irc.org/issues/1023 (closes: #597853) + * contains unrelease bug fix release 0.6.2 + + -- Thomas Mueller thomas.muel...@tmit.eu Sun, 03 Oct 2010 13:52:56 +0200 + +quassel (0.7.0-1) unstable; urgency=low + + * New upstream release + + -- Thomas Mueller thomas.muel...@tmit.eu Sat, 18 Sep 2010 19:19:40 +0200 + since 0.6.3-1 is not a descendent of 0.7.0-1. Aside from confusing those reading the changelog, it also subverts the BTS's ability to derive the presence and fixed state of bugs in the package. (As a side note, given the way t-p-u works, urgency=high is somewhat redundant). Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1286399237.9555.538.ca...@hathi.jungle.funky-badger.org
Re: Accepted wireshark 1.2.10-2+squeeze1 (source i386)
2010/9/30 Adam D. Barratt a...@adam-barratt.org.uk: On Wed, 2010-09-29 at 23:28 +0200, Bálint Réczey wrote: There would be another path to go with wireshark. Would you like the idea of allowing 1.2.11-2 to go to testing if I fix the regression introduced by 1.2.11? Which of the fixes in 1.2.11 aren't (or are, if that's easier) including in the t-p-u package? I referenced the source patch for the changes in 1.2.10-2+squeeze1's changelog: * Backport changes from 1.2.11 - Fix segmentation fault (Closes: #597703) - 0004-Revert-rev-33697-it-s-not-necessary-check_col-is-NOT.patch - Fix inifinite loop in Bootstrap Protocol dissector - 0015-Pick-up-change-from-trunk.patch - - Fix crash in RTSP dissector - 0020-Copy-over-revisions-from-the-trunk.patch, (fix crash in RTSP dissector) - Fix crash when filtering packets based on expert info - 0020-Copy-over-revisions-from-the-trunk.patch, (fix crash in ftype-tvbuff.c) - Fix crash when generating PostScript output\ - 0022-Copy-over-revisions-from-the-trunk.patch The difference between 1.2.10-2+squeeze1 and 1.2.11-1 is still significant, but I think those are low-risk changes. I have uploaded 1.2.11-2 in the meantime: Changes: wireshark (1.2.11-2) unstable; urgency=low . * 25_fix-libsmi-workaround.patch: Fix the libsmi workaround by adding missing brackets. * backport fix for IP header checksum calculation regression introduced in 1.2.10 * [Debconf translation updates] - Vietnamese (Clytie Siddall). (Closes: #598498). [ Daniel T Chen ] * 22_lp606063-fix-assertion-capture_start.patch: Handle event handler being invoked recursively. Fix backported from upstream SVN r33906. Thanks, Gregor Beck! https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5126 (LP: #606063) I reverted the regression and added important fixes. (22_lp606063-fix-assertion-capture_start.patch is in squeeze already). I think 1.2.11-2 is a good candidate for being included in Squeeze and we could return to the unstable - testing migration path. Cheers, Balint -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/aanlkti=+51e4no1_3b1z58f=mztrb3fw_-vjbjmu2...@mail.gmail.com
Bug#598678: marked as done (unblock: cairo-dock/2.1.3.10-3)
Your message dated Wed, 6 Oct 2010 23:06:03 +0200 with message-id 20101006210603.gc2...@radis.liafa.jussieu.fr and subject line Re: Bug#598678: unblock: cairo-dock/2.1.3.10-3 has caused the Debian Bug report #598678, regarding unblock: cairo-dock/2.1.3.10-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 598678: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598678 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock the packages cairo-dock/2.1.3.10-3. The change from Version 2.1.3.10-2 added curl to Recommends only. diff --git a/debian/changelog b/debian/changelog index 8c65691..debc2aa 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +cairo-dock (2.1.3.10-3) unstable; urgency=low + + * Add curl to Recommends (Closes: #594998). + + -- Nobuhiro Iwamatsu iwama...@debian.org Wed, 01 Sep 2010 06:02:54 +0900 + cairo-dock (2.1.3.10-2) unstable; urgency=low [ Nobuhiro Iwamatsu ] diff --git a/debian/control b/debian/control index 399acec..11ea857 100644 --- a/debian/control +++ b/debian/control @@ -40,7 +40,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends} Conflicts: cairo-dock (= 2.1.3.5-2) Replaces: cairo-dock (= 2.1.3.5-2) Suggests: xcompmgr -Recommends: cairo-dock-plugins (= 2.1.3.10) +Recommends: cairo-dock-plugins (= 2.1.3.10), curl Description: Light eye-candy fully themable animated dock for Linux desktop Cairo-dock has a family-likeness with OS X dock, but with more options. It uses cairo to render nice graphics, and Glitz to use hardware acceleration. Best regards, Nobuhiro ---End Message--- ---BeginMessage--- On Fri, Oct 1, 2010 at 13:01:48 +0900, Nobuhiro Iwamatsu wrote: +cairo-dock (2.1.3.10-3) unstable; urgency=low Unblocked. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Re: Removing
On Wed, Oct 6, 2010 at 19:55:35 +0200, Emilio Pozuelo Monfort wrote: Uploaded, please unblock. Done, thanks for your work. Cheers, Julien signature.asc Description: Digital signature
Bug#599357: unblock wireshark/1.2.11-2
Package: release.debian.org Severity: normal Usertags: freeze-exception Hi, I would like to ask for freeze exception for the latest wireshark upload. There has been two uploads to unstable for wireshark since the last migration. 1.2.11 is a mostly bugfix release but introduced a regression which has been fixed in 1.2.11-2. Changes: wireshark (1.2.11-2) unstable; urgency=low . * 25_fix-libsmi-workaround.patch: Fix the libsmi workaround by adding missing brackets. * backport fix for IP header checksum calculation regression introduced in 1.2.10 * [Debconf translation updates] - Vietnamese (Clytie Siddall). (Closes: #598498) . [ Daniel T Chen ] * 22_lp606063-fix-assertion-capture_start.patch: Handle event handler being invoked recursively. Fix backported from upstream SVN r33906. Thanks, Gregor Beck! https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5126 (LP: #606063) Changes: wireshark (1.2.11-1) unstable; urgency=high . * New upstream release 1.2.11 - release notes: http://www.wireshark.org/docs/relnotes/wireshark-1.2.11.html (Closes: #597703) - security fixes - The RTSP dissector could crash. (No assigned CVE number.) * [Debconf translation updates] - Basque (Iñaki Larrañaga Murgoitio). 1.2.10-2+squeeze1 has been uploaded to Squeeze via t-p-u, but I believe 1.2.11-2 would be the better choice for Squeeze. There were a discussion about the update, the thread starts here: http://www.mail-archive.com/debian-release@lists.debian.org/msg39678.html Cheers, Balint -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/aanlktinrew922amvg_zxluuq4zlgnxzostcbca5b3...@mail.gmail.com
Re: Fwd: Bug#598850: please consider including mercurial 1.6.4 in squeeze
On Mon, Oct 4, 2010 at 08:15:25 -0500, Javi Merino wrote: Hi release managers, I would like to ask for a freeze exception for mercurial/1.6.4-1 . mercurial/1.6.4-1 is a new upstream release that fixes #598841. 1.6.X upstream releases are only bugfix releases (new features will be in 1.7). The packaging between 1.6.2-2 and 1.6.4-1 is the same except for a Debian patch which is now included upstream. Wagner Bruma, who is involved in upstream, says in bug #598850: Synchronizing with upstream for Squeeze would ease support for both upstream and the Debian package, since already fixed bugs won't be reported a second time. The changes are summarized in http://mercurial.selenic.com/wiki/WhatsNew#A1.6.4_.282010-10-01.29 I can't upload yet and I guess Vincent won't upload until he gets an ACK from you. Please upload. (No guarantee of an unblock later, I just want to see the actual diff. So you can upload to experimental instead if you don't want to take the chance.) Cheers, Julien signature.asc Description: Digital signature
Re: Please unblock blcr
On Mon, Oct 4, 2010 at 17:00:56 +0100, Alan Woodland wrote: Hi, BLCR 0.8.2-14 contains a number of changes which I think would be strong candidates to see in Squeeze. These are: - Fix an FTBFS (slightly obscure, but important still) #597601 - Drop dependency_libs from .la files (Release goal) - Add support for more recent kernels (including some 2.6.32 ones) #573112 0.8.2-14, which implements these changes makes no major changes over 0.8.2-13 which is currently in Squeeze. There are no breakages or changes introduced in libcr0. Therefore please consider unblocking this in light of the included fixes. +-CR_LIBARCH=$CR_ARCH32 ++CR_LIBARCH=${CR_LIBARCH32:$CR_ARCH32} What is that supposed to do? Cheers, Julien signature.asc Description: Digital signature
Bug#599174: marked as done (unblock: mldonkey/3.0.3-2)
Your message dated Thu, 7 Oct 2010 00:11:58 +0200 with message-id 20101006221158.gh2...@radis.liafa.jussieu.fr and subject line Re: Bug#599174: unblock: mldonkey/3.0.3-2 has caused the Debian Bug report #599174, regarding unblock: mldonkey/3.0.3-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599174: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599174 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, Please unblock package mldonkey. Last changelog entry: mldonkey (3.0.3-2) unstable; urgency=low * Add myself to Uploaders * Add Danish debconf translation (Closes: #599126) -- Stéphane Glondu glo...@debian.org Tue, 05 Oct 2010 10:44:57 +0200 unblock mldonkey/3.0.3-2 Cheers, -- Stéphane -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On Tue, Oct 5, 2010 at 11:55:26 +0200, Stéphane Glondu wrote: unblock mldonkey/3.0.3-2 Done. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Re: Bug#599120: r-base-core embeds liblzma
On Tue, Oct 5, 2010 at 16:12:28 -0500, Dirk Eddelbuettel wrote: r-base 2.11.1-7 seems to have been built everywhere now. I would kindly ask you to unblock it for 'squeeze'. The package is unchanged from 2.11.1-6 with the sole difference the addition of libzma-dev to the Build-Depends, an oversight I had already corrected in the 2.12.0 pre-releases currently in experimental. Unblocked. Cheers, Julien signature.asc Description: Digital signature
Re: Please unblock jhbuild 2.29.2-2
On Wed, Oct 6, 2010 at 00:04:08 +0200, Emilio Pozuelo Monfort wrote: jhbuild (2.29.2-2) unstable; urgency=low Unblocked. Cheers, Julien signature.asc Description: Digital signature
Re: Bug#599249: unblock: ttf-tuffy/20071106-3
On Wed, Oct 6, 2010 at 07:19:55 +0200, Christian Perrier wrote: Please unblock package ttf-tuffy On Wed, Oct 6, 2010 at 07:41:50 +0200, Fabian Greffrath wrote: please let ttf-tuffy_20071106-3 migrate to testing. Unblocked. Cheers, Julien signature.asc Description: Digital signature
Bug#599366: unblock: tomcat6/6.0.28-7
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Please unblock package tomcat6 This upload contains (2) new debconf translations and a fix for a bug (597814) that is causing postinst failures on upgrades for users with '/' in their JAVA_OPTS string (which is quite common since it's the path separator). The severity of 597814 is important, but seems very likely to be elevated since it prevents upgrades of the package. Thus its inclusion in this upload. Thank you, tony unblock tomcat6/6.0.28-7 -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (900, 'testing'), (600, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101006220802.7595.52833.report...@honig.hsd1.wa.comcast.net
Bug#599249: marked as done (unblock: ttf-tuffy/20071106-3)
Your message dated Thu, 7 Oct 2010 00:25:37 +0200 with message-id 20101006222537.gk2...@radis.liafa.jussieu.fr and subject line Re: Bug#599249: unblock: ttf-tuffy/20071106-3 has caused the Debian Bug report #599249, regarding unblock: ttf-tuffy/20071106-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599249: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599249 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package ttf-tuffy unblock ttf-tuffy/20071106-3 (originally proposed by Fabian Greffrath) please let ttf-tuffy_20071106-3 migrate to testing. It removes a spurious patch that was introduced by wrong usage of source v3.0. It was unapplying 01-spurious-langnames.patch, which fixed a nasty upstream bug in the font source files. Please find the debdiff below. (comments by /me) I have to add to this that, as we had it pending in our SVN, another change flew in, namely dropping a Recommends on obsolete stuff. We indeed dropped these Recommends in many font packages, so that one just gets inline with this. Please notice that this drop didn't trigger any problem that we're aware about, as of noweven though it was done in much more popular font packages. Besides that, I confirm what Fabian mentioned. Even though no RC bug was raised for this (Fabian even hadn't time for that as I fixed the issue as quickly as possible, being the culprit for the original mistake), that was an RC issue. diff -Nru ttf-tuffy-20071106/debian/changelog ttf-tuffy-20071106/debian/changelog --- ttf-tuffy-20071106/debian/changelog 2009-12-07 21:31:56.0 +0100 +++ ttf-tuffy-20071106/debian/changelog 2010-10-05 20:14:43.0 +0200 @@ -1,3 +1,12 @@ +ttf-tuffy (20071106-3) unstable; urgency=low + + * Team upload + * Drop x-ttcidfont-conf, fontconfig et al. from Recommends + * Drop a spurious patch introduced by a wrong use of source v3.0, +that was unapplying 01-spurious-langnames.patch + + -- Christian Perrier bubu...@debian.org Tue, 05 Oct 2010 20:14:43 +0200 + ttf-tuffy (20071106-2) unstable; urgency=low [ Christian Perrier ] diff -Nru ttf-tuffy-20071106/debian/control ttf-tuffy-20071106/debian/control --- ttf-tuffy-20071106/debian/control 2009-12-07 21:31:37.0 +0100 +++ ttf-tuffy-20071106/debian/control 2009-12-20 17:51:43.0 +0100 @@ -13,7 +13,6 @@ Package: ttf-tuffy Architecture: all Depends: ${misc:Depends} -Recommends: x-ttcidfont-conf | fontconfig Description: The Tuffy Truetype Font Family Thatcher Ulrich's first outline font design. He started with the goal of producing a neutral, readable sans-serif text font. There are lots of diff -Nru ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 --- ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 2009-12-07 21:51:36.0 +0100 +++ ttf-tuffy-20071106/debian/patches/debian-changes-20071106-2 1970-01-01 01:00:00.0 +0100 @@ -1,92 +0,0 @@ -Description: Upstream changes introduced in version 20071106-2 - This patch has been created by dpkg-source during the package build. - Here's the last changelog entry, hopefully it gives details on why - those changes were made: - . - ttf-tuffy (20071106-2) unstable; urgency=low - . - [ Christian Perrier ] - * Switch to 3.0 (quilt) source format - * Update Standards to 3.8.3 (checked) - * Drop defoma use - . - [ Fabian Greffrath ] - * debian/clean: - + New file. Delete *.otf as well, as they are not created from the patched - sources. - * debian/compat: - + Raised debhelper compatibility to 7. - * debian/control: - + Changed section to fonts. - + Set Maintainer to Debian Fonts Task Force and added myself to Uploaders. - + Updated my email address. - + Added Vcs-Svn and Vcs-Browser fields. - + Raised Build-Depends to debhelper (= 7.0.50~) and quilt (= 0.46-7). - + Removed versioned Build-Depends-Indep on defoma. - + Changed Build-Depends-Indep to fontforge-nox | fontforge. - + Bumped Standards-Version to 3.8.2. - * debian/copyright: - + Coverted into a machine-readable format, relicensed the Debian packaging - under the GNU All-Permissive license and added license information for - the FontForge script. - * debian/control, debian/patches/*, debian/rules: - + Switched from dpatch to quilt. - * debian/postinst: - + Removed. No need to manually regenerate the font
Re: Security unblock requests
On 2010-10-01, Moritz Muehlenhoff j...@inutil.org wrote: Hi, I went through the security issues fixed in sid, but not yet in Squeeze. [ I didn't look into the diffs against current testing, some might be too intrusive for which we need to poke maintainers with a long stick to fix it through t-p-u. ] Please review the following: More unblock requests: mistelix/0.31-2 - CVE-2010-3365 qtcreator/1.3.1-3 - CVE-2010-3374 Please remove from testing: pixelpost/1.7.1-6 = The security issues were reported upstream since more than a year, the bug is unacknowledged since three weeks, the last upload is 1.5 years ago, it has minimal popcon with plenty of alternatives. Not something we want in a stable release for now. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/slrniapujk.8n3@inutil.org
Re: Security unblock requests
On Thu, Oct 7, 2010 at 00:38:44 +0200, Moritz Muehlenhoff wrote: More unblock requests: mistelix/0.31-2 - CVE-2010-3365 + export DYLD_LIBRARY_PATH=$libdir/mistelix/:$DYLD_LIBRARY_PATH +-export LD_LIBRARY_PATH=$libdir/mistelix/:$LD_LIBRARY_PATH ++export LD_LIBRARY_PATH=$libdir/mistelix/${LD_LIBRARY_PATH:+:$LD_LIBRARY_PATH} + export GST_PLUGIN_PATH=$libdir/mistelix/gstreamer/:$GST_PLUGIN_PATH I don't know how empty components in the other variables are handled, but they might have the same issue. Unblocked though. qtcreator/1.3.1-3 - CVE-2010-3374 Unblocked. Please remove from testing: pixelpost/1.7.1-6 Hint added. Thanks, Julien signature.asc Description: Digital signature
Bug#599058: permission to upload plymouth/0.8.3-14 to unstable.
On Mon, Oct 4, 2010 at 10:52:57 +0200, Daniel Baumann wrote: Package: release.debian.org i've improved plymouth packaging so that when you want to use the ascii splash it doesn't pull in any other depends (apart from libc/initramfs-tools). before, it pulled in all of libdrm and additional xorg stuff. I don't think it's worth it at this point. If you want a splash screen you probably have X installed anyway, so plymouth pulling in libdrm isn't really an issue IMO. Cheers, Julien signature.asc Description: Digital signature
Bug#599264: marked as done (unblock: manpages-fr/3.25fr1.4-1 manpages-fr-dev/3.25fr1.4-1)
Your message dated Thu, 7 Oct 2010 01:16:27 +0200 with message-id 20101006231627.gn2...@radis.liafa.jussieu.fr and subject line Re: Bug#599264: unblock: manpages-fr/3.25fr1.4-1 manpages-fr-dev/3.25fr1.4-1 has caused the Debian Bug report #599264, regarding unblock: manpages-fr/3.25fr1.4-1 manpages-fr-dev/3.25fr1.4-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599264: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599264 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock packages manpages-fr and manpages-fr-dev, which are pure documentation packages. manpages-fr (3.25fr1.4-1) unstable; urgency=low [ Denis Barbier ] * New perkamon release 3.25-4. Improvements in French translations: + madvise.2: Drop a spurious paragraph + gethostname.2 proc.5: Fix typos + man-pages.7: Include translations of section names + *.7 Fix encoding (Closes: #599116) + Fix many plural forms * debian/control: Add missing trailing slash to Vcs-Browser. * debian/rules: In get-orig-source target, build .orig.tar.bz2 if it does not exist. * debian/control: Standards-Version: bumped to 3.9.1. No changes. [ Simon Paillard ] * debian/control: add myself as one of the Uploaders. -- Simon Paillard spaill...@debian.org Mon, 04 Oct 2010 23:09:40 +0200 On top of this, the build fix a lintian error (build issue in the previous version): # E manpage-not-compressed * usr/share/man/fr/man2/path_resolution.2 unblock manpages-fr/3.25fr1.4-1 manpages-fr-dev/3.25fr1.4-1 Thanks ! -- Simon Paillard ---End Message--- ---BeginMessage--- On Wed, Oct 6, 2010 at 11:16:25 +0200, Simon Paillard wrote: unblock manpages-fr/3.25fr1.4-1 manpages-fr-dev/3.25fr1.4-1 Unblocks are for source packages, so manpages-fr-dev can stay out of this :) debian/patches/debian-changes-3.25fr1.1-1 | 1947 -- debian/patches/debian-changes-3.25fr1.4-1 | 1943 + Please don't do this, it makes review impossible... Unblocked. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Bug#599277: marked as done (unblock: haskell-gtk/0.11.0-5)
Your message dated Thu, 7 Oct 2010 01:26:33 +0200 with message-id 20101006232633.go2...@radis.liafa.jussieu.fr and subject line Re: Bug#599277: unblock: haskell-gtk/0.11.0-5 has caused the Debian Bug report #599277, regarding unblock: haskell-gtk/0.11.0-5 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 599277: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=599277 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Please unblock package haskell-gtk A user noticed that a freeze is possible in gtk applications written with haskell-gtk. We have backported the relevant changes from upstream version 0.11.2 and uploaded the fixed package to unstable. Depending packages have been binNMUed. The bug report in question is: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=597837 (There was more discussion on the debian-haskell-list about the issue, but probably not relevant here.) unblock haskell-gtk/0.11.0-5 - -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (101, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.35-trunk-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkysUxAACgkQ9ijrk0dDIGyWngCeKGztCVIuv8Zu+pYbhxxOphXO ++kAnA4lTM+AIrbVjTPOjhhvdFzGi15Y =qM5z -END PGP SIGNATURE- ---End Message--- ---BeginMessage--- On Wed, Oct 6, 2010 at 12:44:32 +0200, Joachim Breitner wrote: unblock haskell-gtk/0.11.0-5 Done (and unblocked libffi which this depends on on armel, kfreebsd-amd64, kfreebsd-i386, for some reason). Cheers, Julien signature.asc Description: Digital signature ---End Message---
clamav packages newer in etch-volatile than in squeeze
This situation is fubar: testing 0.96.1+dfsg-1 unstable 0.96.3+dfsg-2 volatile [lenny-volatile] 0.96.3+dfsg-1~volatile1 Maybe the clamav team should request a freeze exception, or if the package in unstable is unsuitable, upload something to t-p-u ASAP? It gets worse because 0.96.3 is a security fix for CVE-2010-0405. -- One disk to rule them all, One disk to find them. One disk to bring them all and in the darkness grind them. In the Land of Redmond where the shadows lie. -- The Silicon Valley Tarot Henrique Holschuh -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101007000333.ga30...@khazad-dum.debian.net
please unblock tau/2.16.4-1.4
please unblock tau/2.16.4-1.4 the debdiff is below debdiff tau_2.16.4-1.3.dsc tau_2.16.4-1.4.dsc | diffstat debian/patches/06-598303-CVE-2010-3382-insecure-library-loading.diff | 35 ++ tau-2.16.4/debian/changelog |9 ++ tau-2.16.4/debian/patches/series |1 3 files changed, 45 insertions(+) debdiff tau_2.16.4-1.3.dsc tau_2.16.4-1.4.dsc diff -u tau-2.16.4/debian/changelog tau-2.16.4/debian/changelog --- tau-2.16.4/debian/changelog +++ tau-2.16.4/debian/changelog @@ -1,3 +1,12 @@ +tau (2.16.4-1.4) unstable; urgency=low + + * Non-maintainer upload. + * Fix CVE-2010-3382 insecure library loading +Add debian/patches/06-598303-CVE-2010-3382-insecure-library-loading.diff +Closes: 598303 + + -- Anibal Monsalve Salazar ani...@debian.org Wed, 06 Oct 2010 20:55:41 +1100 + tau (2.16.4-1.3) unstable; urgency=low * Non-maintainer upload diff -u tau-2.16.4/debian/patches/series tau-2.16.4/debian/patches/series --- tau-2.16.4/debian/patches/series +++ tau-2.16.4/debian/patches/series @@ -6,0 +7 @@ +06-598303-CVE-2010-3382-insecure-library-loading.diff only in patch2: unchanged: --- tau-2.16.4.orig/debian/patches/06-598303-CVE-2010-3382-insecure-library-loading.diff +++ tau-2.16.4/debian/patches/06-598303-CVE-2010-3382-insecure-library-loading.diff @@ -0,0 +1,35 @@ +http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3382 +http://security-tracker.debian.org/tracker/CVE-2010-3382 +http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598303 + +Raphael Geissert have found that this package contains a script that +can be abused by an attacker to execute arbitrary code. + +The vulnerability is introduced by an insecure change to +LD_LIBRARY_PATH, and environment variable used by ld.so(8) to look for +libraries on a directory other than the standard paths. + +Vulnerable code follows: + +/usr/bin/tauex line 197: +export LD_LIBRARY_PATH=$TAUROOT/$TAUARCH/lib/$theBinding:$LD_LIBRARY_PATH + +When there's an empty item on the colon-separated list of +LD_LIBRARY_PATH, ld.so treats it as '.' (i.e. CWD/$PWD.) +If the given script is executed from a directory where a potential, +local, attacker can write files to, there's a chance to exploit this +bug. + +Patch by Julien Cristau jcris...@debian.org + +--- a/tools/src/tauex.in 2007-05-19 09:04:55.0 +1000 b/tools/src/tauex.in 2010-10-06 19:03:38.0 +1100 +@@ -194,7 +194,7 @@ for c in $Counters ; do + done + + +-export LD_LIBRARY_PATH=$TAUROOT/$TAUARCH/lib/$theBinding:$LD_LIBRARY_PATH ++export LD_LIBRARY_PATH=$TAUROOT/$TAUARCH/lib/$theBinding${LD_LIBRARY_PATH:+:$LD_LIBRARY_PATH} + + if [ $verbose = true ] ; then + echo Matching bindings: $bindings signature.asc Description: Digital signature
Re: Bug #566650: Please unblock dtc 0.32.2-1
Philipp Kern wrote: On Thu, Oct 07, 2010 at 02:17:54AM +0800, Thomas Goirand wrote: I know what I wrote, I know what has been written to me. I've been told that my message has been forwarded to the release team (however, it never has been written to me that it has been forwarded to a public list). It would take time (as I receive about 100 email a day and because I don't remember who wrote it to me), but I could search in my email backlog to prove it. 4c6a1df0.4040...@funlabs.org Please make sure that your future mails are send to out mailing-list. I hate private requests for many reasons... one of them is transparency. Debian has the culture of transparency for absolutely every single bit. However, it might not be suitable on all cases, and I haven't seen anywhere that this should be an enforced policy. You were told this (quoted with permission of faw): | We started discussing some aspects of PHP but we didn't talk about | DTC, we would really prefer to discuss it thru the list, to be open | and transparent about the process and to be fair with others | dealing with different aspects of the release process. You were also told: | I just want to tell you that you should do it rather earlier | than later. Even if it is a plan right now, you should make it | public an known so we can talk about it and have a public open | reference about the plan, goals and possible actions In my case, I was kindly asking for an advice, and it was my preference to keep it private. Is this wrong? What's wrong in asking advices to the release team privately, and tell about my plans for the release, if I wish to do so? Just one example out of many I have in mind: I might dislike to have some of my business competitors to read, and forecast my next move. Debian isn't about business competition. We did tell you to submit it to a public list, AFAICS you did not followup, not even stating such a reason, neither. Ok, ok, ok... I failed to write publicly, misunderstood that it was required in order to forward my email to the public list to have an answer, and wrongly thought that my questions were asked to the RT as I read I've forwarded which mislead me to believe no further action was to be done to have the discussion started. Well understood. I fully acknowledged the miscommunication issue at least twice in this thread already. I can even do it a 3rd time: mea culpa, mea culpa, mea maxima culpa... Can we move forward and discuss what should be done now, rather than discussing the past? Thomas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4cad31ca.3030...@debian.org
Bug#599377: unblock: mahara/1.2.6-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package mahara Mahara 1.2.6 was released upstream to fix two RC bugs: - removal of a non-free swf video player (#591200) - upgrades from 1.0.x (the version in lenny) didn't work (not in the BTS) I did most of these fixes in mahara-1.2.6-1, but I forgot about one swf so I had to upload mahara-1.2.6-2 shortly after. Relevant changelog entries: mahara (1.2.6-2) unstable; urgency=medium * Move flowplayer.audio to the contrib package as well * Add an allow rule in apache.conf for flowplayer.audio -- Francois Marier franc...@debian.org Mon, 06 Sep 2010 20:59:44 +1200 mahara (1.2.6-1) unstable; urgency=medium * New upstream release (to address #591200): - removal of the tinymce media plugin - replaced the non-free media player with flowplayer * Move mediaplayer into a separate contrib package (closes: #591200) * Relax the deny rule on serving lib to make flowplayer work * Add a dependency on tinymce and use that instead of bundled version * Bump Standards-Version up to 3.9.1 * Urgency set to medium because of RC bug -- Francois Marier franc...@debian.org Mon, 06 Sep 2010 20:51:17 +1200 unblock mahara/1.2.6-2 -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.34.7-grsec (SMP w/2 CPU cores) Locale: LANG=fr_CA.UTF-8, LC_CTYPE=fr_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101007025852.13349.57901.report...@isafjordur.dyndns.org
Bug#599378: unblock: debootstrap
Package: release.debian.org debootstrap in squeeze is currently 1.0.23, there have been two versions in unstable since then. Here are the changelog entries debootstrap (1.0.25) unstable; urgency=low * Remove debug statement that slipped in. * Add test to guard against devices.tar.gz being empty. * /dev/MAKEDEV cannot be relied on (udev likes to make it a symlink to true). Always use /sbin/MAKEDEV. Closes: #598080 -- Joey Hess jo...@debian.org Sun, 26 Sep 2010 13:18:31 -0400 debootstrap (1.0.24) unstable; urgency=low [ Miguel Figueiredo ] * Apply patches from by Jonathan Klee and Guillaume Chauvel to add support to https (closes: #521196). [ Colin Watson ] * Add (Ubuntu) natty as a symlink to gutsy. [ Joey Hess ] * Add support for wheezy. Closes: #597461 -- Joey Hess jo...@debian.org Sun, 19 Sep 2010 21:40:00 -0400 I asked joeyh if these were important for squeeze, taggart debootstrap is currently 1.0.23 in squeeze, do you think .24 or .25 should go in? taggart I am going to update the lenny backport, so I thought I'd check first joeyh yes, we need support for stable+1 in stable taggart ok, should we file a bug on release.debian.org (or maybe just ask in #debian-release or something)? joeyh yeah - can you? taggart ok joeyh wouldn't hurt to age it an extra 10 days imho taggart it's 10 days now, do you mean 10 more? joeyh yes.. the bug in .24 would not be noticed by patch review.. Please consider unblocking debootstrap once it's had sufficient aging. Thanks, -- Matt Taggart tagg...@debian.org -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20101007033224.c9d0b1a9...@taggart.lackof.org