Bug#863063: libvigraimpex: New upstream versions (1.11.x)

[Andreas Metzler]

Source: libvigraimpex
Version: 1.10.0+git20160211.167be93+dfsg-2
Severity: wishlist

https://github.com/ukoethe/vigra/releases

Version 1.11.1

@ukoethe ukoethe released this 2 days ago
Changes from Version 1.11.0 to 1.11.1

Added 3D convex hull computation and features (David Stöckel).
Added Random Forest version 3, inspired by LEMON's graph API, to simplify 
customization of RF variants (Philip Schill).
Improved hierarchical clustering (Constantin Pape).
Minor improvements and bug fixes in the code and documentation.



Version 1.11.0
@ukoethe ukoethe released this on 17 Mar 2016 · 224 commits to master since 
this release
Changes from Version 1.10.0 to 1.11.0

Ported vigranumpy to Python 3.5.
Added chunked arrays to store data larger than RAM as a collection of 
rectangular blocks.
Added vigra::ThreadPool and parallel_foreach() for portable algorithm 
parallelization based on std::thread.
Implemented parallel versions of Gaussian smoothing, Gaussian derivatives, 
connected components labeling, and union-find watersheds.
Added graph-based image analysis, e.g. agglomerative clustering
Included the callback mechanism described in Impossibly Fast C++ Delegates 
by Sergey Ryazanov (needed for agglomerative clustering).
Added many image registration functions.
Extended the collection of multi-dimensional distance transform algorithms 
by vectorial DT, boundary DT, and eccentricity transform.
Added skeletonizeImage(), nonLocalMean(), multi-dimensional integral images.
Added new 2D shape features based on skeletonization and the convex hull.
Additional arithmetic and algebraic functions for vigra::TinyVector.
Added vigra::CountingIterator.
Minor improvements and bug fixes in the code and documentation.

Bug#863061: reprepro fails to generate contents file "Error decompressing gz data: incorrect header check -3".

[peter green]

Package: reprepro
Version: 5.1.1-1~bpo8+1

As a result of some server issues I recently re-imported all of the raspbian 
repos into a new reprepro instance. A few weeks later a user complained that 
contents files were missing from our repo. After doing some investigation it 
seems that reprepro can't read one of our packages. I was able to succesfully 
extract the package using using dpkg-deb.

So I decided to manually pick apart the package. It appears that the data member is 
called "data.tar.gz" but is in-fact uncompressed.

While this does seem a bit strange IMO if dpkg can handle a package reprepro 
should too.

I attempted to implement handling for this case but I could not get it to work, 
I attatch a debdiff of my attempt anyway.

The package is available for download from 
http://archive.raspbian.org/raspbian/pool/main/l/linux-3.10/linux-source-3.10_3.10.11-1+rpi7_all.deb

repo@bytemark2017:~/private/private$ reprepro -VV export jessie
Exporting jessie...
<--snip-->
 generating main/Contents-armhf...
Reading filelist for 
pool/main/l/linux-3.10/linux-source-3.10_3.10.11-1+rpi7_all.deb
Error decompressing gz data: incorrect header check -3
open data.tar within 
'./pool/main/l/linux-3.10/linux-source-3.10_3.10.11-1+rpi7_all.deb' failed: 
Uncompression error
repo@bytemark2017:~/private/private$ dpkg-deb -x 
pool/main/l/linux-3.10/linux-source-3.10_3.10.11-1+rpi7_all.deb /tmp/testextract
repo@bytemark2017:~/private/private$ ar t 
pool/main/l/linux-3.10/linux-source-3.10_3.10.11-1+rpi7_all.deb
debian-binary
control.tar.gz
data.tar.gz
repo@bytemark2017:~/private/private$ ls
usr
repo@bytemark2017:/tmp/testextract$ ar x 
~/private/private/pool/main/l/linux-3.10/linux-source-3.10_3.10.11-1+rpi7_all.deb
repo@bytemark2017:/tmp/testextract$ ls
control.tar.gz  data.tar.gz  debian-binary  usr
repo@bytemark2017:/tmp/testextract$ file data.tar.gz
data.tar.gz: POSIX tar archive (GNU)
repo@bytemark2017:/tmp/testextract$


diff -Nru reprepro-5.1.1/debian/changelog reprepro-5.1.1/debian/changelog
--- reprepro-5.1.1/debian/changelog 2017-01-08 12:21:09.0 +
+++ reprepro-5.1.1/debian/changelog 2017-05-21 03:27:45.0 +
@@ -1,3 +1,10 @@
+reprepro (5.1.1-1~bpo8+1+test) UNRELEASED; urgency=medium
+
+  * If data tar extraction fails try again as uncompressed.
+Some packages have an uncompressed data.tar.gz 
+
+ -- root   Sun, 21 May 2017 03:07:25 +
+
 reprepro (5.1.1-1~bpo8+1) jessie-backports; urgency=medium
 
   * Rebuild for jessie-backports.
diff -Nru reprepro-5.1.1/debian/patches/series 
reprepro-5.1.1/debian/patches/series
--- reprepro-5.1.1/debian/patches/series1970-01-01 00:00:00.0 
+
+++ reprepro-5.1.1/debian/patches/series2017-05-21 03:09:07.0 
+
@@ -0,0 +1 @@
+uncompression.diff
diff -Nru reprepro-5.1.1/debian/patches/uncompression.diff 
reprepro-5.1.1/debian/patches/uncompression.diff
--- reprepro-5.1.1/debian/patches/uncompression.diff1970-01-01 
00:00:00.0 +
+++ reprepro-5.1.1/debian/patches/uncompression.diff2017-05-21 
03:30:27.0 +
@@ -0,0 +1,44 @@
+ If data tar extraction fails try again as uncompressed.
+Some packages have an uncompressed data.tar.gz.
+
+Index: reprepro-5.1.1/debfilecontents.c
+===
+--- reprepro-5.1.1.orig/debfilecontents.c
 reprepro-5.1.1/debfilecontents.c
+@@ -55,7 +55,6 @@ static retvalue read_data_tar(/*@out@*/c
+   ar_archivemember_read,
+   ar_archivemember_close);
+   if (a != ARCHIVE_OK) {
+-  filelistcompressor_cancel();
+   e = archive_errno(tar);
+   if (e == -EINVAL) /* special code to say there is none */
+   fprintf(stderr,
+@@ -65,7 +64,27 @@ static retvalue read_data_tar(/*@out@*/c
+   fprintf(stderr,
+ "open data.tar within '%s' failed: %d:%d:%s\n", debfile, a, e,
+   archive_error_string(tar));
+-  return RET_ERROR;
++  fprintf(stderr,"retrying uncompressed");
++  ar_archivemember_setcompression(ar, c_none);
++  a = archive_read_open(tar, ar,
++  ar_archivemember_open,
++  ar_archivemember_read,
++  ar_archivemember_close);
++  if (a != ARCHIVE_OK) {
++  e = archive_errno(tar);
++  if (e == -EINVAL) /* special code to say there is none 
*/
++  fprintf(stderr,
++"open data.tar within '%s' failed: %s\n",
++  debfile, archive_error_string(tar));
++  else
++  fprintf(stderr,
++"open data.tar within '%s' failed: %d:%d:%s\n", debfile, a, e,
++  archive_error_string(tar));
++  
++

Bug#818328: "Publicity" section in intro/organization (organization.data)

[Paul Wise]

On Sat, May 20, 2017 at 9:37 PM, Laura Arjona Reina wrote:

> I'm attaching a patch that creates "Communication and Outreach" as I
> proposed, but leaving Consultants under "Support and infrastructure"
> as Martin Michlmayr suggested. I've moved "DebConf Committee" to this
> "Communication and Outreach" section, next to "Events".

Looks good to me, the only change I would make is to move the
publicity anchor next to the publicity team and create a commsoutreach
anchor and use that for the section.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Bug#798033: get.debian.org rejects HTTPS connections, but redirects to HTTPS site

[Paul Wise]

On Sat, 20 May 2017 14:58:05 +0200 Laura Arjona Reina wrote:

> As Paul Wise noted in the former comment, https://get.debian.org does
> redirect now to https://www.debian.org/CD and gives no error.

That has changed since I made my comment, now:

get.d.o http redirects to www.d.o http
get.d.o https redirects to www.d.o https

> I think the problem is solved; so I'm closing this bug.

Indeed, since this was the initial complaint:

Please make it possible to connect to get.debian.org via HTTPS and have
the redirection function properly.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#863060: linux-image-4.9.0-2-grsec-amd64: grsec prevents sddm and KDE from starting

[Hieu Van]

Package: src:linux-grsec
Version: 4.9.18-1+grsec201703261106+1
Severity: important

Dear Maintainer,

Recently I installed grsec kernel for my PC which is running Debian 9 with KDE 
Plasma as the main desktop environment. It would have been good if sddm had 
started so I can login to KDE but grsec seems to be preventing sddm from 
starting up (some kind of "denied priority change" and "untrusted exec"). Every 
time the boot process finishes, I'm greeted with a totally blank screen. 
Attempted to run "startx" and what I got is just the KDE mouse cursor and 
nothing else. Trying to run "sddm" would throw a "...resource overstep" error. 
I'm just a noob, please help me :(

Update : Just used "paxctl -m" to disable some sort of protection on 
/usr/bin/plasmashell as well as sddm and nothing came up to my expectation.

-- Package-specific info:
** Version:
Linux version 4.9.0-2-grsec-amd64 (cor...@debian.org) (gcc version 6.3.0 
20170321 (Debian 6.3.0-11) ) #1 SMP Debian 4.9.18-1+grsec201703261106+1 
(2017-03-30)

** Command line:
BOOT_IMAGE=/boot/vmlinuz-4.9.0-2-grsec-amd64 
root=UUID=4b1b36ee-7398-4827-8b82-eac1cc3b363e ro quiet

** Not tainted

** Kernel log:

** Model information
[  610.728031] grsec: exec of /bin/dash (/bin/sh -c apt-cache pkgnames ) by 
/bin/dash[reportbug:1354] uid/euid:0/0 gid/egid:0/0, parent 
/usr/bin/reportbug[reportbug:1350] uid/euid:0/0 gid/egid:0/0
[  610.729688] grsec: exec of /usr/bin/apt-cache (apt-cache pkgnames ) by 
/usr/bin/apt-cache[sh:1355] uid/euid:0/0 gid/egid:0/0, parent 
/bin/dash[sh:1354] uid/euid:0/0 gid/egid:0/0
[  610.735207] grsec: exec of /usr/bin/dpkg (/usr/bin/dpkg 
--print-foreign-architectures ) by /usr/bin/dpkg[apt-cache:1356] uid/euid:0/0 
gid/egid:0/0, parent /usr/bin/apt-cache[apt-cache:1355] uid/euid:0/0 
gid/egid:0/0
[  610.775686] grsec: exec of /usr/bin/dpkg (/usr/bin/dpkg 
--print-foreign-architectures ) by /usr/bin/dpkg[apt-cache:1357] uid/euid:0/0 
gid/egid:0/0, parent /usr/bin/apt-cache[apt-cache:1355] uid/euid:0/0 
gid/egid:0/0
[  622.479920] grsec: exec of /bin/dash (/bin/sh -c COLUMNS=79 dpkg --status 
linux-image-4.9.0-2-grsec-amd64 2>/dev/null ) by /bin/dash[reportbug:1358] 
uid/euid:0/0 gid/egid:0/0, parent /usr/bin/reportbug[reportbug:1350] 
uid/euid:0/0 gid/egid:0/0
[  622.481836] grsec: exec of /usr/bin/dpkg (dpkg --status 
linux-image-4.9.0-2-grsec-amd64 ) by /usr/bin/dpkg[sh:1359] uid/euid:0/0 
gid/egid:0/0, parent /bin/dash[sh:1358] uid/euid:0/0 gid/egid:0/0
[  622.483434] grsec: exec of /usr/bin/dpkg-query (dpkg-query --status -- 
linux-image-4.9.0-2-grsec-amd64 ) by /usr/bin/dpkg-query[dpkg:1359] 
uid/euid:0/0 gid/egid:0/0, parent /bin/dash[sh:1358] uid/euid:0/0 gid/egid:0/0
[  622.527054] grsec: exec of /bin/dash (/bin/sh -c /usr/bin/debsums 
--ignore-permissions -s linux-image-4.9.0-2-grsec-amd64 ) by 
/bin/dash[reportbug:1360] uid/euid:0/0 gid/egid:0/0, parent 
/usr/bin/reportbug[reportbug:1350] uid/euid:0/0 gid/egid:0/0
[  622.528799] grsec: exec of /usr/bin/debsums (/usr/bin/debsums 
--ignore-permissions -s linux-image-4.9.0-2-grsec-amd64 ) by 
/usr/bin/debsums[sh:1361] uid/euid:0/0 gid/egid:0/0, parent /bin/dash[sh:1360] 
uid/euid:0/0 gid/egid:0/0
[  622.619641] grsec: exec of /usr/bin/dpkg (/usr/bin/dpkg --print-architecture 
) by /usr/bin/dpkg[debsums:1362] uid/euid:0/0 gid/egid:0/0, parent 
/usr/bin/debsums[debsums:1361] uid/euid:0/0 gid/egid:0/0
[  622.622504] grsec: exec of /usr/bin/dpkg-query (dpkg-query 
--admindir=/var/lib/dpkg --showformat=${Package}  ${PackageSpec}  
${binary:Package}  ${Version}  ${Status}  ${Conffil) by 
/usr/bin/dpkg-query[debsums:1363] uid/euid:0/0 gid/egid:0/0, parent 
/usr/bin/debsums[debsums:1361] uid/euid:0/0 gid/egid:0/0
[  622.705971] grsec: exec of /bin/dash (sh -c LC_ALL=C dpkg-divert --list 
--admindir /var/lib/dpkg ) by /bin/dash[debsums:1364] uid/euid:0/0 
gid/egid:0/0, parent /usr/bin/debsums[debsums:1361] uid/euid:0/0 gid/egid:0/0
[  622.708344] grsec: exec of /usr/bin/dpkg-divert (dpkg-divert --list 
--admindir /var/lib/dpkg ) by /usr/bin/dpkg-divert[sh:1365] uid/euid:0/0 
gid/egid:0/0, parent /bin/dash[sh:1364] uid/euid:0/0 gid/egid:0/0
[  623.730034] grsec: exec of /bin/dash (/bin/sh -c COLUMNS=79 dpkg 
--print-architecture 2>/dev/null ) by /bin/dash[reportbug:1366] uid/euid:0/0 
gid/egid:0/0, parent /usr/bin/reportbug[reportbug:1350] uid/euid:0/0 
gid/egid:0/0
[  623.731755] grsec: exec of /usr/bin/dpkg (dpkg --print-architecture ) by 
/usr/bin/dpkg[sh:1367] uid/euid:0/0 gid/egid:0/0, parent /bin/dash[sh:1366] 
uid/euid:0/0 gid/egid:0/0
[  623.738400] grsec: exec of /bin/dash (/bin/sh -c COLUMNS=79 dpkg 
--print-architecture 2>/dev/null ) by /bin/dash[reportbug:1368] uid/euid:0/0 
gid/egid:0/0, parent /usr/bin/reportbug[reportbug:1350] uid/euid:0/0 
gid/egid:0/0
[  623.740267] grsec: exec of /usr/bin/dpkg (dpkg --print-architecture ) by 
/usr/bin/dpkg[sh:1369] uid/euid:0/0 gid/egid:0/0, parent /bin/dash[sh:1368] 
uid/euid:0/0 gid/egid:0/0
[  626.126653] grsec: exec of /bin/dash 

Bug#863059: libgit2: FTBFS on armhf and mips64el: thread tests segfault

[Aaron M. Ucko]

Source: libgit2
Version: 0.25.1-2
Severity: serious
Justification: fails to build from source (but built successfully in the past)

The armhf and mips64el builds of libgit2 both segfaulted in thread
tests, per the excerpted log output below (armhf first).  Could you
please take a look?

Thanks!

  submodule::status...
  submodule::update...
  threads::basic
  
  
  75% tests passed, 1 tests failed out of 4
  
  Total Test time (real) =  58.85 sec
  
  The following tests FAILED:
1 - libgit2_clar (SEGFAULT)

--

  submodule::update...
  threads::basic
  threads::diff..
  
  
  75% tests passed, 1 tests failed out of 4
  
  Total Test time (real) =  65.07 sec
  
  The following tests FAILED:
1 - libgit2_clar (SEGFAULT)

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu

Bug#862840: needrestart: terminated itself by restarting apt-daily.service (when the script is updated)

[Paul Wise]

Control: severity -1 serious
Control: usertags -1 + bittenby

On Wed, 17 May 2017 16:26:39 + Alan Jenkins wrote:

> The script for apt-daily.service was recently modified by an update.
> When this update was installed by `unattended-upgrades`, `needrestart`
> restarted the service.  I.e. needrestart terminates unattended-upgrades,
> and hence itself.  This causes a few lines of log noise (below), and
> does not quite seem desirable.

This is a pretty serious bug (upgraded severity). It doesn't result in
data loss but it is a serious interruption of the upgrade process,
which means that the usual mail sent by unattended-upgrades is never
sent to the admin of the system and no services are restarted.

> So either apt-daily.service could be treated specially, or needrestart
> could ignore all Type=oneshot services.

I think it need to not restart oneshot services by default, since it
has no information about whether or not they can be safely restarted.
I would guess that most oneshot services cannot be safely restarted.

> The latter raises questions about a longer-running oneshot service
> which is security-sensitive...  So I think the simplest solution is
> treat apt-daily.service specially.

I think oneshot services are meant to exit ASAP rather than running for
a long time. They will be listed in the "needs restarting" section, so
I think it is fine to not restart oneshot services by default.

> apt-daily-upgrade.service should also be treated the same way,
> because it also runs unattended-upgrades.
> 
> I think unattended-upgrades.service should also be treated
> the same way, because this is the service that runs unattended-upgrades
> on shutdown (if enabled).

Agreed.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise


signature.asc
Description: This is a digitally signed message part

Bug#862840: needrestart: terminated itself by restarting apt-daily.service (when the script is updated)

[Paul Wise]

ns"@gmail.com>
Cc: unattended-upgra...@packages.debian.org, a...@packages.debian.org
Date: Sun, 21 May 2017 10:00:39 +0800
In-Reply-To: <149503839934.494.1328921687138228967.reportbug@unstable>
References: <149503839934.494.1328921687138228967.reportbug@unstable>
Organization: Debian
Content-Type: multipart/signed; micalg="pgp-sha256";
protocol="application/pgp-signature"; boundary="=-d04L31o33fSsEC3P957B"
X-Mailer: Evolution 3.22.6-1 
Mime-Version: 1.0


--=-d04L31o33fSsEC3P957B
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Control: severity -1 serious
Control: usertags -1 + bittenby

On Wed, 17 May 2017 16:26:39 + Alan Jenkins wrote:

> The script for apt-daily.service was recently modified by an update.
> When this update was installed by `unattended-upgrades`, `needrestart`
> restarted the service.=C2=A0=C2=A0I.e. needrestart terminates unattended-=
upgrades,
> and hence itself.=C2=A0=C2=A0This causes a few lines of log noise (below)=
, and
> does not quite seem desirable.

This is a pretty serious bug (upgraded severity). It doesn't result in
data loss but it is a serious interruption of the upgrade process,
which means that the usual mail sent by unattended-upgrades is never
sent to the admin of the system and no services are restarted.

> So either apt-daily.service could be treated specially, or needrestart
> could ignore all Type=3Doneshot services.

I think it need to not restart oneshot services by default, since it
has no information about whether or not they can be safely restarted.
I would guess that most oneshot services cannot be safely restarted.

> The latter raises questions about a longer-running oneshot service
> which is security-sensitive...=C2=A0=C2=A0So I think the simplest solutio=
n is
> treat apt-daily.service specially.

I think oneshot services are meant to exit ASAP rather than running for
a long time. They will be listed in the "needs restarting" section, so
I think it is fine to not restart oneshot services by default.

> apt-daily-upgrade.service should also be treated the same way,
> because it also runs unattended-upgrades.
>=C2=A0
> I think unattended-upgrades.service should also be treated
> the same way, because this is the service that runs unattended-upgrades
> on shutdown (if enabled).

Agreed.

--=20
bye,
pabs

https://wiki.debian.org/PaulWise

--=-d04L31o33fSsEC3P957B
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part

-BEGIN PGP SIGNATURE-
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=cAfp
-END PGP SIGNATURE-

--=-d04L31o33fSsEC3P957B--

Bug#863038: Fwd: Re: Bug#863038: systemd-timesyncd ignores FallbackNTP config setting

[Michael Biebl]

Am 21.05.2017 um 01:27 schrieb Michael Biebl:
> Control: tags -1 + confirmed
> Control: forwarded -1 https://github.com/systemd/systemd/issues/5091
> 
> Thanks for the additional information
> 
>> [Time]
>> NTP=
>> FallbackNTP=0.de.pool.ntp.org 1.de.pool.ntp.org 2.de.pool.ntp.org
> 
> I can reproduce the issue. See the upstream bug report for more details.
> 

I've posted a proposed fix at
https://github.com/systemd/systemd/pull/5999

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#258096: Good News

[Roberto Huneeus]

A donation was made to you by Mr. Francois. Reply to this email:( 
francoispinaul...@yahoo.com )for more details...

Bug#863058: firefox-esr: can't play videos on Vimeo

[Vincent Lefevre]

Control: retitle -1 firefox-esr: can't play videos on Vimeo if 
media.autoplay.enabled is set to false
Control: tags -1 upstream
Control: forward -1 https://bugzilla.mozilla.org/show_bug.cgi?id=1231886

I've eventually found the cause here:
  https://askubuntu.com/questions/777489/vimeo-video-not-playing-in-firefox

(There are may pages about issues with Vimeo, it was a bit difficult
to find the right one...)

Then I've found an upstream bug...

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Bug#863058: firefox-esr: can't play videos on Vimeo

[Vincent Lefevre]

On 2017-05-21 02:09:02 +0200, Vincent Lefevre wrote:
> Playing videos on Vimeo, such as https://vimeo.com/183181894
> does not work: if I click on Play, the video is not played.

I've just seen that with youtube-dl on the same machine, I can
download the video and play it with VLC without any problem.
So, there may be an issue with Firefox itself.

Note: youtube-dl is not really a workaround as it cannot be used
on sites where a private Vimeo video is embedded.

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

Bug#863046: crash in menu->client

[PICCORO McKAY Lenz]

2017-05-20 16:26 GMT-04:00 Markus Koschany :

> Is this issue reproducible with a fresh installation of minetest on your
> system? If yes, how?
>
> What mods do you have installed on your system because I see you get a
> runtime error from some unknown mod. Minetest mods which are not
> packaged and available in Debian are not supported though and are a
> frequent cause for crashes. This is not actionable by Debian and should
> be reported to the mod developer.
>

it seems a mod! but i have installed all the sid available mods except for
the animals due the mods need updates by upstream developer

i must made try and catch mannually by each mod to find the problem!

so dont close this bug, i confirm its a mod but still do not know what mod!

PD> the report bug tool are broken due mantainers do not sync between
backports packages and main repo packages, i report the issue but close it
without furter tests!


>
> Markus
>
>
>

Bug#863058: firefox-esr: can't play videos on Vimeo

[Vincent Lefevre]

Package: firefox-esr
Version: 45.9.0esr-1
Severity: important

Playing videos on Vimeo, such as https://vimeo.com/183181894
does not work: if I click on Play, the video is not played.
There is no such problem with Firefox on Android.

https://help.vimeo.com/hc/fr/articles/224821087-Pourquoi-ne-m-est-il-pas-possible-de-lire-des-vidéos-sous-Linux-Ubuntu-

(for Ubuntu) says that the following packages should be installed:

  gstreamer0.10-plugins-good 
  streamer0.10-ffmpeg

but this is not possible in Debian/unstable. firefox-esr
recommends gstreamer1.0-libav and gstreamer1.0-plugins-good,
which are already both installed on my machine. So, they do
not seem to be sufficient.

firefox-esr should recommend packages needed to play videos from
major web sites.

-- Package-specific info:

-- Extensions information
Name: -Global Styles- userstyle
Status: enabled

Name: Adblock Plus
Location: ${PROFILE_EXTENSIONS}/{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Status: enabled

Name: AlloCiné userstyle
Status: enabled

Name: allocine-imdb greasemonkey-user-script
Status: enabled

Name: cac-imdb greasemonkey-user-script
Status: enabled

Name: Cinémathèque Française userstyle
Status: enabled

Name: Classic Theme Restorer
Location: ${PROFILE_EXTENSIONS}/classicthemeresto...@arist2noia4dev.xpi
Status: enabled

Name: Combine Stop/Reload buttons userstyle
Status: enabled

Name: Default theme
Location: 
/usr/lib/firefox-esr/browser/extensions/{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Package: firefox-esr
Status: enabled

Name: Dictionnaire français dictionary
Location: ${PROFILE_EXTENSIONS}/fr-dicolle...@dictionaries.addons.mozilla.org
Status: enabled

Name: Different cursor for links that open in new windows userstyle
Status: enabled

Name: Disable autocomplete userstyle
Status: user-disabled

Name: Disable marquee userstyle
Status: user-disabled

Name: Filmsite.org userstyle
Status: enabled

Name: Firebug
Location: ${PROFILE_EXTENSIONS}/fire...@software.joehewitt.com.xpi
Status: enabled

Name: Firefox Hello Beta
Location: ${PROFILE_EXTENSIONS}/l...@mozilla.org.xpi
Status: enabled

Name: Flagfox
Location: ${PROFILE_EXTENSIONS}/{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi
Status: enabled

Name: Font Finder
Location: ${PROFILE_EXTENSIONS}/fontfin...@bendodson.com.xpi
Status: enabled

Name: FxIF
Location: ${PROFILE_EXTENSIONS}/{11483926-db67-4190-91b1-ef20fcec5f33}.xpi
Status: enabled

Name: GLPI - assistance.ens-lyon.fr userstyle
Status: enabled

Name: Google Search userstyle
Status: enabled

Name: Greasemonkey
Location: ${PROFILE_EXTENSIONS}/{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
Status: enabled

Name: gtranslate
Location: ${PROFILE_EXTENSIONS}/{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi
Status: enabled

Name: HeadingsMap
Location: ${PROFILE_EXTENSIONS}/headi...@niquelheadings.net.xpi
Status: enabled

Name: HTML5 Video Everywhere!
Location: ${PROFILE_EXTENSIONS}/html5-video-everywh...@lejenome.me.xpi
Status: enabled

Name: IMDb userstyle
Status: enabled

Name: itt-datetimes greasemonkey-user-script
Status: enabled

Name: Link Widgets
Location: ${PROFILE_EXTENSIONS}/linkwid...@clav.mozdev.org
Status: enabled

Name: Live HTTP headers
Location: ${PROFILE_EXTENSIONS}/{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}
Status: enabled

Name: Move tabbar to the bottom userstyle
Status: user-disabled

Name: Move tabbar to the left userstyle
Status: user-disabled

Name: Move tabbar to the right userstyle
Status: user-disabled

Name: Multiple row bookmark toolbar userstyle
Status: user-disabled

Name: Nerim userstyle
Status: enabled

Name: Nimbus Screen Capture - editable screenshots.
Location: ${PROFILE_EXTENSIONS}/nimbusscreencaptur...@everhelper.me.xpi
Status: enabled

Name: Open in Browser
Location: ${PROFILE_EXTENSIONS}/openinbrow...@www.spasche.net.xpi
Status: enabled

Name: PeopleForCinema userstyle
Status: enabled

Name: QuickWiki
Location: ${PROFILE_EXTENSIONS}/{EE223D7A-F30F-11DD-8F0A-D2AD55D89593}.xpi
Status: enabled

Name: Slashdot.org - Remove ads userstyle
Status: enabled

Name: SourceForge font size in comments userstyle
Status: enabled

Name: Stylish
Location: ${PROFILE_EXTENSIONS}/{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi
Status: enabled

Name: Stylish-Custom
Location: ${PROFILE_EXTENSIONS}/stylish-cus...@choggi.dyndns.org
Status: user-disabled

Name: Tab Mix Plus
Location: ${PROFILE_EXTENSIONS}/{dc572301-7619-498c-a57d-39143191b318}.xpi
Status: enabled

Name: twitter-times greasemonkey-user-script
Status: enabled

Name: us-to-iso8601 greasemonkey-user-script
Status: user-disabled

Name: Video DownloadHelper
Location: ${PROFILE_EXTENSIONS}/{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
Status: enabled

Name: Web Developer
Location: ${PROFILE_EXTENSIONS}/{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi
Status: enabled

Name: Wikipedia font size userstyle
Status: enabled

Name: X-Ray
Location: ${PROFILE_EXTENSIONS}/{3f1182ea-3243-4d32-8826-71fb1cc9c328}.xpi
Status: enabled

Name: youtube-html5 greasemonkey-user-script
Status: enabled

-- 

Bug#863046: works on Devuan

[PICCORO McKAY Lenz]

tested on Devuan wihtout problems, the Debian machine was a minilaptop and
the Devuan machine its a Dell 15R touchscreen

minetest
2017-05-20 19:52:14: WARNING[Main]: Could not load icon file
'/usr/share/icons/hicolor/128x128/apps/minetest.png'
2017-05-20 19:52:14: WARNING[Main]: Could not load icon file
'/usr/share/games/minetest/misc/minetest-xorg-icon-128.png'
Loaded texture: /usr/share/games/minetest/textures/base/pack/blank.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_favorite.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_creative.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_damage.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_pvp.png
2017-05-20 19:52:19: ERROR[AsyncWorker-0]:
servers.minetest.net/list?proto_version_min=25_version_max=28 not
found (Timeout was reached) (response code 0)
2017-05-20 19:52:54: ERROR[AsyncWorker-1]:
servers.minetest.net/list?proto_version_min=25_version_max=28 not
found (Timeout was reached) (response code 200)


Lenz McKAY Gerardo (PICCORO)
http://qgqlochekone.blogspot.com

Bug#863038: Fwd: Re: Bug#863038: systemd-timesyncd ignores FallbackNTP config setting

[Michael Biebl]

Control: tags -1 + confirmed
Control: forwarded -1 https://github.com/systemd/systemd/issues/5091

Thanks for the additional information

> [Time]
> NTP=
> FallbackNTP=0.de.pool.ntp.org 1.de.pool.ntp.org 2.de.pool.ntp.org

I can reproduce the issue. See the upstream bug report for more details.

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#863026: [Python-modules-team] Bug#863026: Broken symlinks break collecstatic on deploy

[Brian May]

Enrico Zini  writes:

> Yes, my mistake, I found the bug on nono.debian.org (jessie) but I
> reported it from my laptop (testing).

Actually, partly my mistake. This is a different bug. I hadn't noticed,
but this bug is specific for the Python2 package on Jessie. Where as the
bug I reported was specific to the Python3 package.

The problem being that the symlinks refer to the "pyshared" directory,
which was removed IIRC after wheezy. It was intended to share files
between Python 2.6 and Python 2.7.

These symlink were removed in version 3.0.5-0.2.

+djangorestframework (3.0.5-0.2) experimental; urgency=medium
+
+  * Non-maintainer upload.
+  * Fix broken links to media files. Remove debian/*.links, these symlinks are
+no longer relevant.
+
+ -- Brian May   Mon, 16 Mar 2015 14:20:11 +1100
+

> I noticed after sending the bug, then tried to send found/notfound
> commands to fix the versions, but apparently I didn't manage to mark
> 3.4.0-2 as fixed.

I will fix that. However note that "notfound" is the opposite of
"found", it will remove the "found" version. What you were looking for
was the "fixed" instruction.

> I'm sorry I didn't notice #858811, I guess since it doesn't know it
> affects stable, it got closed and archived.

Don't be sorry - it affected the same file, but was a different bug, in
a different package.

Question: Does this deserve an update in the next Debian Jessie point
release? There was a point release just recently, so might be several
months until the next one.
-- 
Brian May 

Bug#851066: More security bugs in debian version

[Rodrigo Campos]

Hi,

Just in case you weren't aware, several security issues has been fixed in flash.
Here is the last batch of fixes that I know of:
https://blog.qualys.com/laws-of-vulnerabilities/2017/05/09/adobe-fixes-half-dozen-flash-vulnerabilities-and-more

These is, of course, not fixed in debian because of this bug.


If I can help with testing or something, please let me know.



Thanks,
Rodrigo

Bug#863057: Fritzing needs a dependency

[Sebastian Martin Dicke]

Package: fritzing
Version: 0.9.3b+dfsg-4
Severity: important

 When this packages ist installed and the application is started via KDE
application menu, the main window never get showed (obviously). After
install fritzing-parts this behaviour vanishes. Obviously fritzing needs
fritzing-parts. Also it should be a dependency, not just a suggestion.

Bug#782328: tinyca: Homepage not reachable / Alternative homepage

[Christoph Ulrich Scholler]

close 782328
thanks

With TinyCA being hosted on Alioth there is a new homepage:
https://tinyca.alioth.debian.org/

This is reflected in the package metadata since version 0.7.5-6.

Bug#863056: node-gulp-coffee: lacks dependency on coffeescript

[Jonas Smedegaard]

Package: node-gulp-coffee
Version: 2.3.4-1
Severity: important

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

- From the package descript it seems node-gulp-coffee is a wrapper for 
coffeescript, 
yet it does not depend on coffeescript.

Is there any use cases without involving coffeescript?


 - Jonas

-BEGIN PGP SIGNATURE-
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=qeHP
-END PGP SIGNATURE-

Bug#863038: Fwd: Re: Bug#863038: systemd-timesyncd ignores FallbackNTP config setting

[Marcus Jodorf]

Hi Michael,

sure, no problem.

$ ls /usr/lib/systemd/timesyncd.conf.d/*.conf
ls: cannot access '/usr/lib/systemd/timesyncd.conf.d/*.conf': No such 
file or directory

$ ls /run/systemd/timesyncd.conf.d/*.conf
ls: cannot access '/run/systemd/timesyncd.conf.d/*.conf': No such file 
or directory

$ ls /etc/systemd/timesyncd.conf.d/*.conf
ls: cannot access '/etc/systemd/timesyncd.conf.d/*.conf': No such file 
or directory

$ls /etc/systemd/timesyncd.conf
/etc/systemd/timesyncd.conf

$cat /etc/systemd/timesyncd.conf
#  This file is part of systemd.
#
#  systemd is free software; you can redistribute it and/or modify it
#  under the terms of the GNU Lesser General Public License as published by
#  the Free Software Foundation; either version 2.1 of the License, or
#  (at your option) any later version.
#
# Entries in this file show the compile time defaults.
# You can change settings by editing this file.
# Defaults can be restored by simply deleting this file.
#
# See timesyncd.conf(5) for details.

[Time]
NTP=
FallbackNTP=0.de.pool.ntp.org 1.de.pool.ntp.org 2.de.pool.ntp.org 
3.de.pool.ntp.org


$

#systemd-analyze set-log-level debug
#systemctl restart systemd-timesyncd
#journalctl -u systemd-timesyncd.service

-- Logs begin at Sat 2017-05-20 23:27:54 CEST, end at Sat 2017-05-20 
23:46:45 CEST. --

May 20 23:27:54 black systemd[1]: Starting Network Time Synchronization...
May 20 23:27:54 black systemd[1]: Started Network Time Synchronization.
May 20 23:28:29 black systemd-timesyncd[534]: Synchronized to time 
server 91.198.10.4:123 (2.debian.pool.ntp.org).
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Trying to 
enqueue job systemd-timesyncd.service/restart/replace
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Installed 
new job systemd-timesyncd.service/restart as 1381
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Enqueued 
job systemd-timesyncd.service/restart as 1381
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Changed 
running -> stop-sigterm

May 20 23:46:44 black systemd[1]: Stopping Network Time Synchronization...
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Got 
notification message from PID 534 (WATCHDOG=1)
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Got 
notification message from PID 534 (STOPPING=1, STATUS=Shutting down...)
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Got 
notification message from PID 534 (STATUS=Idle.)
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Got 
notification message from PID 534 (STATUS=Idle.)
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Got 
notification message from PID 534 (STATUS=Idle.)
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Child 534 
belongs to systemd-timesyncd.service
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Main 
process exited, code=exited, status=0/SUCCESS
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Changed 
stop-sigterm -> dead
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Job 
systemd-timesyncd.service/restart finished, result=done

May 20 23:46:44 black systemd[1]: Stopped Network Time Synchronization.
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Converting 
job systemd-timesyncd.service/restart -> systemd-timesyncd.service/start

May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: cgroup is empty
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: 
ConditionFileIsExecutable=!/usr/sbin/VBoxService succeeded.
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: 
ConditionFileIsExecutable=!/usr/sbin/chronyd succeeded.
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: 
ConditionFileIsExecutable=!/usr/sbin/openntpd succeeded.
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: 
ConditionFileIsExecutable=!/usr/sbin/ntpd succeeded.
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: 
ConditionVirtualization=!container succeeded.
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: 
ConditionCapability=CAP_SYS_TIME succeeded.
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Passing 0 
fds to service
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: About to 
execute: /lib/systemd/systemd-timesyncd
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Forked 
/lib/systemd/systemd-timesyncd as 4195
May 20 23:46:44 black systemd[1]: systemd-timesyncd.service: Changed 
dead -> start

May 20 23:46:44 black systemd[1]: Starting Network Time Synchronization...
May 20 23:46:45 black systemd[4195]: systemd-timesyncd.service: 
Executing: /lib/systemd/systemd-timesyncd
May 20 23:46:45 black systemd[1]: systemd-timesyncd.service: Got 
notification message from PID 4195 (WATCHDOG=1)
May 20 23:46:45 black systemd[1]: systemd-timesyncd.service: Got 
notification message from PID 4195 (READY=1, STATUS=Daemon is running)
May 20 23:46:45 black systemd[1]: 

Bug#839575: hangs waiting for openssl

[Christoph Ulrich Scholler]

Hi Stefan,

Stefan Bühler  writes:
> tinyca hangs due to a regression in openssl, fixed in:
>
> 
> https://github.com/openssl/openssl/commit/888adbe064556ff5ab2f1d16a223b0548696614c

Thank you very much for this piece of information. I had already
implemented (but not uploaded) a ugly workaround for this issue, but it
is of course best addressed in OpenSSL itself. I will reassign this
issue to the openssl package.

> * it builds strings to execute with /bin/sh -c "...", and quotes
>   filenames using \"$filename\" in perl.  It should pass the command
>   and arguments as list instead - it's not that complicated.

I'll look into that.

> * trying to respond to the openssl interactive mode seems a very bad
>   idea.

Agreed. Fixing it amounts to an almost complete rewrite of the non-GUI
code, though...

> * when I close tinyca (working on an existing setup) perl crashes with
>   a segfault (no idea who to blame for this, see attached
>   tinyca-perl-valgrind.txt)

See #843568. It doesn't happen on Jessie, even with the current version
of tinyca.

Regards

Uli

Bug#863055: opendkim: forcefully removes conffile on upgrade

[James Cowgill]

Package: opendkim
Version: 2.11.0~alpha-9
Severity: serious
Justification: Policy 10.7.3

Hi,

opendkim.postinst contains this:
> # Upgrade /etc/default to systemd override files
> if [ -d /run/systemd/system ] && [ -f /etc/default/opendkim ]; then
> if /lib/opendkim/opendkim.service.generate; then
> rm -f /etc/default/opendkim
> fi

This will forcefully remove /etc/default/opendkim on upgrade and erase
any changes the user made without saving them anywhere, therefore
violating policy 10.7.3. Instead of removing the file, it should be
moved and then cleaned up on purge.

--

On a related note: I suspect the above code will break if the user ever
decides to switch to a different init system while opendkim is installed.

> if [ -f /etc/tmpfiles.d/opendkim.conf ]; then
> systemd-tmpfiles --create 
> /etc/tmpfiles.d/opendkim.conf
> fi

I haven't tested anything, but I am wondering if this is subtly broken
in the case where the generated $RUNDIR == /var/run/opendkim but $USER
is different. dh_installinit inserts a call to systemd-tmpfiles for the
file in /usr/lib/... which will override whatever is done here in that case.

Thanks,
James



signature.asc
Description: OpenPGP digital signature

Bug#861786: Pending fixes for bugs in the activemq package

[pkg-java-maintainers]

tag 861786 + pending
thanks

Some bugs in the activemq package are closed in revision
fd68debd62b3e13cd1ea1252ec064f4b56c7ca91 in branch 'master' by Markus
Koschany

The full diff can be seen at
https://anonscm.debian.org/cgit/pkg-java/activemq.git/commit/?id=fd68deb

Commit message:

Fix CVE version typo in last changelog entry.

Closes: #861786

Bug#863011: rrootage: Game should use locale aware keys

[Markus Koschany]

Control: tags -1 confirmed
Control: severity -1 wishlist

Am 20.05.2017 um 08:57 schrieb Andrej Mernik:
> Package: rrootage
> Version: 0.23a-12+b1
> Severity: minor
> 
> Dear Maintainer,
> 
> currently the game uses X and Z keys for actions which are mapped to these
> letters (SDLK_X and SDLK_Z). This makes the game very painful to play on
> keyboard layouts without X and Z next to each other. Please adapt the keycode
> scanning to be locale aware.
> 
> Best Regards,
> Andrej Mernik

Thanks for the report. I agree it would be nice to make the keys
configurable, although I find it OKish to use the arrow keys for
movement with the right hand and the fire and special key with the left
hand on a QWERTZ keyboard. :) Upstream is no longer active. As usual:
Patches are welcome.

Cheers,

Markus




signature.asc
Description: OpenPGP digital signature

Bug#859867: [buildd-tools-devel] Bug#859867: Please add a package which automatically configures sbuild for Debian packaging

[Michael Stapelberg]

On Thu, May 18, 2017 at 11:39 PM, Michael Stapelberg 
wrote:

> Sorry for the late reply.
>
> On Tue, Apr 11, 2017 at 10:39 AM, Johannes Schauer 
> wrote:
>
>> Hi,
>>
>> Quoting Michael Stapelberg (2017-04-08 11:28:12)
>> > One area where sbuild sorely lacks is configuration, though: pbuilder
>> is very
>> > easy to set up, whereas sbuild requires reading through
>> > https://wiki.debian.org/sbuild, performing a bunch of steps, only to
>> end up
>> > with a setup which works fine for unstable, but seems very clumsy when
>> > building packages for experimental or backports.
>> >
>> > One solution to this issue that I can see is to add a new binary
>> > package to src:sbuild which — possibly after a brief debconf prompt —
>> > performs all the necessary steps to end up with a setup that just
>> > works.
>> >
>> > What are your thoughts on this? Would patches be welcome to add such a
>> > package?
>>
>> patches totally welcome! :D
>>
>
> Cool! I’ll see if I can whip up such a package by working through the wiki
> page.
>

Find attached the first draft of my suggestion. I implemented it as a
separate package purely so that I can build it more quickly, but I assume
we’d want to fold this into src:sbuild eventually.

The resulting package (I built it using dpkg-buildpackage -b) depends on
sbuild, schroot, debootstrap, perl-base, lintian. Upon installation, it
will create an unstable sbuild schroot, modify its configuration, add all
users to sbuild and create a modified ~/.sbuildrc for all users.

If you want to read through the entire behavior, I recommend the
entrypoints debian/postinst and update-sbuild-chroots.

I tested this package on my notebook, which is a Debian installation on
which I never had sbuild installed, so I’m reasonably confident that the
package works — at least to the point that one gets an sbuild installation
that builds packages.

I’d be happy about any feedback. Thanks!


>
>
>>
>> This is a nice idea!
>>
>> Maybe these packages could be named sbuild-backend-${foo} where $foo is
>> the
>> respective backend? At first, a package sbuild-backend-schroot would be
>> cool
>> because schroot is the default backend. It would be nice if that would
>> set up
>> sbuild schroots for stable-backports, unstable and experimental. Maybe
>> that
>> package should also install and activate cron-jobs to regularly update
>> those
>> schroots?
>>
>
> Which other backends even are there, and do we really need to offer our
> users that choice, when we’re talking about a package with sane defaults
> for people who prefer not to make these choices right now? :)
>
>
>>
>> What irks me is, that this setup would be Debian specific. It doesn't
>> make much
>> sense for Debian's downstreams to have have schroots for Debian. Maybe the
>> distribution name should be part of the package name? Or maybe it should
>> be
>> easy for downstreams that care to override the set of distributions the
>> schroots are created for?
>>
>
> Putting Debian into the package name seems reasonable.
>
> How about sbuild-debian-dev-setup?
>
> I originally thought of sbuild-debian-setup, but it could be confused to
> mean “a setup which reflects Debian’s official setup”, i.e. the buildds.
>
> The “setup” suffix to me conveys that this package offers only
> configuration, not new software. Perhaps there’s a more idiomatic term for
> that in Debian?
>
>
>>
>> Thanks!
>>
>> cheers, josch
>>
>
>
>
> --
> Best regards,
> Michael
>



-- 
Best regards,
Michael


sbuild-debian-setup.tar.bz2
Description: BZip2 compressed data

Bug#789487: libdevel-cover-perl: unexpected OP_PADRANGE at /usr/share/perl/5.20/B/Deparse.pm

[gregor herrmann]

On Sun, 21 Jun 2015 15:36:22 +0200, Jakub Wilk wrote:

> Running Devel::Cover against the attached test program provokes a warning
> from B::Deparse:
> 
> $ perl -MDevel::Cover=-silent,1 test.pl
> unexpected OP_PADRANGE at /usr/share/perl/5.20/B/Deparse.pm line 1260.

I've just uploaded 1.25 to experimental which has changes with
OP_PADRANGE; but it doesn't mention this bug or the upstream issue.


Cheers,
gregor

-- 
 .''`.  https://info.comodo.priv.at/ - Debian Developer https://www.debian.org
 : :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D  85FA BB3A 6801 8649 AA06
 `. `'  Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe
   `-   


signature.asc
Description: Digital Signature

Bug#800424: libdevel-cover-perl: FTBFS on i386 (Linux + Hurd, not kFreeBSD)

[gregor herrmann]

On Wed, 30 Dec 2015 10:50:30 +0200, Niko Tyni wrote:

> > I've made some progress on it fwiw, and it seems to be something with
> > two print statements in different modules getting the same opcode address
> > on the perl side, therefore hashing down to a same hash key and getting
> > counted as one. Will update the upstream bug when I've got.to the bottom
> > of it.
> I'm attaching the patch I've just sent upstream, but I suggest we wait
> a bit for Paul to comment rather than apply it for Debian straight away.
> I'm sure it could be better :)

I've just uploaded 1.25 to experimental, which includes Niko's patch.
We'll see at 
https://buildd.debian.org/status/package.php?p=libdevel-cover-perl=experimental
how it works out.


Cheers,
gregor

-- 
 .''`.  https://info.comodo.priv.at/ - Debian Developer https://www.debian.org
 : :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D  85FA BB3A 6801 8649 AA06
 `. `'  Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe
   `-   


signature.asc
Description: Digital Signature

Bug#863054: doxygen: please make the output of $year reproducible

[Chris Lamb]

Source: doxygen
Version: 1.8.13-4
Severity: wishlist
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: timestamps toolchain
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

Hi,

Whilst working on the Reproducible Builds effort [0], we noticed
that doxygen generates non-reproducible output when interpolating
the $year variable.

Patch attached.

 [0] https://reproducible-builds.org/


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#849151: GnuPG 2 support in Horde_Crypt

[Mathieu Parent]

severity 854819 serious
tag 854819 - patch + upstream
tag 849151 - patch
thanks

Some news about this: upstream has worked on this, but I needed two
more patches for complete support
(https://github.com/horde/horde/pull/221).

Niels, I plan to do the following:
- wait one week until the Horde team review and hopefully merge my pull-request
- upload to sid 2.7.8 with my PR (or that might be 2.7.9 if PR is merged)
- ask an unblock request

Appart from GnuPG support (and style or comment changes), 2.7.5..2.7.8
includes the change "Correctly specify either sha-1 or sha-256 when
signing a smime message." which is worth having given that sha1 is
dead now.

Niels, what do you think about this plan?

Regards

-- 
Mathieu Parent

Bug#862878: colordiff --color=no to a pipe is not working

[Dave Ewart]

On Thursday, 18.05.2017 at 05:28 +0200, Francois Gouget wrote:

> Dear Maintainer,
> 
> The README says that one can do:
> 
> If you want to force disable colour escape sequences (for example
> pipe the output to patch), you can use option '--color=no' to do
> so:
> 
> $ diff -u file1 file2 | colordiff --color=no | patch -p0 -d 
> another-working-dir
> 
> 
> However in 1.0.16 this does not work bcause $color_patch is only used
> if output is to a file:
> 
> if ((-f STDOUT) && ($color_patch == 0)) {
> ... disable color output ...
> 
> 
> So I propose the attached patch to make sure that *if set*
> $color_patch can override the automatic decisions either way.
> 
> It would also make sense to ship a /etc/colordiffrc file where
> color_patches is set to auto, but whatever the case one would be able
> to get the desired behavior by using --color=XXX on the command line.

[Back story: The 'color=no' behaviour was introduced to address the
rather perverse (in my opinion) requirement of that command line above
contributed by a user.  As designed, the middle section of the pipe
'colordiff --color=no' serves *no purpose whatsoever* and should be
omitted but someone required it in some odd corner case.]

I accept that the documentation and the code don't match and that your
patch sounds sensible.

I'll either accept entirely as-is or, possibly, slightly modified.
Given the primary purpose of colordiff is to add colour, in the case of
any ambiguity, it will add colour rather than not.  I agree that if one
explicitly says 'color=no' it shouldn't add colour; even though this
remains in my eyes and entirely pointless & unnecessary use of
colordiff!

Thanks Francois :-)

Dave.

-- 
Dave Ewart da...@sungate.co.uk, http://twitter.com/DaveEwart
All email from me is digitally signed, http://www.sungate.co.uk/
GPG key updated Jan 2013 see http://www.sungate.co.uk/gpg
Fingerprint: CF3A 93EF 01E6 16C5 AE7A  1D27 45E1 E473 378B B197


signature.asc
Description: Digital signature

Bug#863053: qjoypad: fails to bring up the setup window if already up

[Adam Borowski]

Package: qjoypad
Version: 4.1.0-2.1
Severity: minor

Hi!
If I left-click the tray icon, but the window already exists somewhere (most
likely, buried under something unrelated), nothing happens.  This is quite
frustrating if you need to hunt on which desktop, which monitor, you left it.

It'd be nice if left-click either:
* brought up the window from wherever it is, or
* flip it between closed/open state

The latter is what every other tray icon I currently have does (Clementine,
Pidgin, Thunderbird+FireTray, Transmission).


Meow!
-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'testing'), 
(150, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.12.0-rc1-debug-00011-gb82803d91ae5 (SMP w/6 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages qjoypad depends on:
ii  libc6   2.24-10
ii  libgcc1 1:7.1.0-5
ii  libqtcore4  4:4.8.7+dfsg-11
ii  libqtgui4   4:4.8.7+dfsg-11
ii  libstdc++6  7.1.0-5
ii  libx11-62:1.6.4-3
ii  libxtst62:1.2.3-1

qjoypad recommends no packages.

qjoypad suggests no packages.

-- no debconf information

Bug#863052: cme update dpkg-copyright doesn't recognize comma in license

[Paul Gevers]

Package: cme
Version: 1.016-2
Severity: normal

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Hi Dominique,

I am using cme to update the copyright file of lazarus for a new upstream
release. Althought I will not use the output in the package¹ I do notice that
it doesn't recognize the meaning of one of the licenses:

License: GPL-2+ or MPL-1.1, and unicode

which is allowed by the spec²:

"""
For the most complex cases, a comma is used to disambiguate the priority of ors
and ands. The conjunction "and" has priority over "or" unless preceded by a
comma.
"""

This is what triggered me:
Deleting unused license: MPL-1.1, and unicode

Paul

¹ When a sub-directory has a different license than "*", cme makes different
  choices than I do. It look like it tries to find the "main" license and list
  the deviations from that, while I choose to list the deviations from
  "*". Also, I group multiple license holders with the same license under one
  group. Do you want me to file wishlist bugs against cme to have this as
  options?
² https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/

- -- System Information:
Debian Release: 9.0
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (200, 'experimental'), 
(200, 'testing'), (50, 'experimental'), (50, 'testing'), (1, 'experimental')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.9.0-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages cme depends on:
ii  libapp-cmd-perl   0.331-1
ii  libconfig-model-perl  2.097-1
ii  libjson-perl  2.90-1
ii  libpath-tiny-perl 0.100-1
ii  libpod-pom-perl   2.01-1
ii  libyaml-perl  1.21-1
ii  perl  5.24.1-2

Versions of packages cme recommends:
ii  libconfig-model-approx-perl   1.009-2
ii  libconfig-model-dpkg-perl 2.090
ii  libconfig-model-lcdproc-perl  2.050-1
ii  libconfig-model-openssh-perl  1.237-1
ii  libconfig-model-systemd-perl  0.232.6-1
ii  libconfig-model-tkui-perl 1.361-1

Versions of packages cme suggests:
pn  libconfig-model-cursesui-perl  
pn  libconfig-model-itself-perl

- -- no debconf information

-BEGIN PGP SIGNATURE-

iQEzBAEBCAAdFiEEWLZtSHNr6TsFLeZynFyZ6wW9dQoFAlkgrYcACgkQnFyZ6wW9
dQrZDgf9E0a8RUWyL87DmeKBV8b7J/9+1LJtDGrUAEX9Jie/MmToO1iGo0qlrrnH
HOPH3qJaJ4p+wY20gqBWVHbdEopgUPBwgLgnrHx0pY52lZJDy9Q0Jcx180nERszd
btdJ50W8Bkaefm8vECIYM9po/eR/bVjGPrhrAAwtE5z3lQQ2hFtQUWOExtmMhwg5
c+vc6QKXR1h6x9qyOZp8t3RguLCrx4+fmKfNEQWlUqHd9KfaQr61JZbG4ZXBcScb
LFsqTIl10VgG84UZniafOAzbuByCC+Rm6AlPrVwx+RjvUX3G/yMwiQGQ1wmOcKJP
mO1hjXiSZ1ag8KUnmI0kJpyTrCzy0g==
=8GI5
-END PGP SIGNATURE-

Bug#863051: RFP: openedx -- Course management system

[Pierre Rudloff]

Package: wnpp
Severity: wishlist

* Package name: openedx
  Version : 2017-05-19-12.18
  Upstream Author : edX
* URL : https://open.edx.org/
* License : AGPL
  Programming Lang: Python
  Description : Course management system

The Open edX platform is a free--and open source--course management system
(CMS) that was originally developed by edX. The Open edX platform is used all
over the world to host Massive Open Online Courses (MOOCs) as well as smaller
classes and training modules.

Upstream provides a Vagrant image as the main installation method.
IMHO having a Debian package would make it easier to install.

Bug#863050: Please update to newer version

[Sam Geeraerts]

Package: python-jpype
Version: 0.5.4.2-3+b1

The newest version of Jpype in Debian is currently 0.5.4.2, which is
from 2011. The latest upstream version is 0.6.2, which is from 2017.
Some Python packages (e.g. JayDeBeApi) require a newer version of Jpype
than the one in Debian. There's also Python 3 support since 2015.

I notice that the watch file points to Sourceforge. Jpype has moved to
Github [1] some time ago.

Please update the watch and the package so that we can enjoy Jpype's
new features and bug fixes straight from Debian.

[1] https://github.com/originell/jpype

Bug#863049: jessie-pu: package shutter/0.92-0.1+deb8u2

[gregor herrmann]

Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian@packages.debian.org
Usertags: pu

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

I've prepared an upload of shutter for stable. The new version
includes two patches:
- - one fixing CVE-2016-10081 / #849777
- - another one which dod uploaded together with this one as 0.93.1-1.3
  in January which is also security relevant (replaces
  system("string") with system(@array)).

Full debdiff attached.


Cheers,
gregor

-BEGIN PGP SIGNATURE-
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=KPfu
-END PGP SIGNATURE-
diff --git a/debian/changelog b/debian/changelog
index 009a696..af656ed 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+shutter (0.92-0.1+deb8u2) UNRELEASED; urgency=medium
+
+  [ Dominique Dumont ]
+  * add patch to fix CVE-2016-10081 (Closes: #849777)
+  * add patch to secure system() calls
+
+ -- gregor herrmann   Sat, 20 May 2017 22:30:53 +0200
+
 shutter (0.92-0.1+deb8u1) jessie; urgency=high
 
   * Fix insecure usage of system(). Closes: #798862 [CVE-2015-0854]
diff --git a/debian/patches/CVE-2016-10081.patch 
b/debian/patches/CVE-2016-10081.patch
new file mode 100644
index 000..edd2ff8
--- /dev/null
+++ b/debian/patches/CVE-2016-10081.patch
@@ -0,0 +1,42 @@
+Bug: https://bugs.launchpad.net/shutter/+bug/1652600
+Bug-Debian: https://bugs.debian.org/849777
+Author: Christoph Biedl 
+Description: fix insecure use of perl exec()
+ The patch attached uses the multi-argument invocation and also changes
+ it in the code path for non-Perl plugins.
+--- a/bin/shutter
 b/bin/shutter
+@@ -7159,8 +7159,13 @@
+ elsif ( $pid == 0 ) {
+ 
+ #see Bug #661424
+-my $qfilename = quotemeta $session_screens{$key}->{'long'};
+-exec( sprintf( "$^X $plugin_value %d $qfilename 
$session_screens{$key}->{'width'} $session_screens{$key}->{'height'} 
$session_screens{$key}->{'filetype'}\n", $socket->get_id ) );
++#my $qfilename = quotemeta $session_screens{$key}->{'long'};
++exec( $^X, $plugin_value,
++$socket->get_id,
++$session_screens{$key}->{'long'},
++$session_screens{$key}->{'width'},
++$session_screens{$key}->{'height'},
++$session_screens{$key}->{'filetype'} );
+ }
+ 
+ $sdialog->show_all;
+@@ -7193,11 +7198,15 @@
+ my $plugin_process = Proc::Simple->new;
+ 
+ #see Bug #661424
+-my $qfilename = quotemeta $session_screens{$key}->{'long'};
++#my $qfilename = quotemeta $session_screens{$key}->{'long'};
+ 
+ $plugin_process->start(
+ sub {
+-system("'$plugin_value' $qfilename 
'$session_screens{$key}->{'width'}' '$session_screens{$key}->{'height'}' 
'$session_screens{$key}->{'filetype'}' ");
++system( $plugin_value,
++$session_screens{$key}->{'long'},
++$session_screens{$key}->{'width'},
++$session_screens{$key}->{'height'},
++$session_screens{$key}->{'filetype'} );
+ POSIX::_exit(0);
+ }
+ );
diff --git a/debian/patches/fix-perl-system-calls 
b/debian/patches/fix-perl-system-calls
new file mode 100644
index 000..6de4ac5
--- /dev/null
+++ b/debian/patches/fix-perl-system-calls
@@ -0,0 +1,268 @@
+Author: dod
+Description: Fix perl system calls
+ This patch replaces all system("big string") calls to 
+ system(@big_list) in all plugins to avoid problems similar to CVE-2016-10081.
+--- a/share/shutter/resources/system/plugins/perl/sppolaroid/sppolaroid
 b/share/shutter/resources/system/plugins/perl/sppolaroid/sppolaroid
+@@ -349,9 +349,6 @@
+ 
+ sub apply_effect {
+ 
+-  #quote filename
+-  my $qfilename = quotemeta $filename;
+-
+   if ( $use_caption ) {
+ 
+   my $text = $caption_entry->get_text;
+@@ -360,27 

Bug#849777: Pending fixes for bugs in the shutter package

[pkg-perl-maintainers]

tag 849777 + pending
thanks

Some bugs in the shutter package are closed in revision
87f106dd4f0049cf7c1b4f77929d059b229a90a9 in branch '  jessie' by
Dominique Dumont

The full diff can be seen at
https://anonscm.debian.org/cgit/pkg-perl/packages/shutter.git/commit/?id=87f106d

Commit message:

add patch to fix CVE-2016-10081 (Closes: #849777)

Bug#863048: python3-socketio-client: Don't use six.b in WebsocketTransport

[Celelibi]

Package: python3-socketio-client
Version: 0.6.5-0.1
Severity: normal

Dear Maintainer,

When receiving data, the WebsocketTransport class calls six.b on the
input packet. In python3, this is implemented as encoding the string
into "latin-1". Which immediately raise an exception if the string
contains non-latin-1 characters.

There's something smelly about the way the packets are parsed. Either we
know it's all text, and we can let the websocket class do the decoding
by looking at the packet opcode. Or we have byte-level suff to do and we
should get the bytes directly from the WebSocket class without letting
it decide it.  Or, as last alternative encode the string as utf-8 if
we're in python3 and got a str object, since the WebSocket class only
decode as utf-8.

First solution:
Remove the call to six.b and just handle the str object instead of
bytes.

Second solution:
Call recv_data() instead of recv() to get packet_text.

Third solution:
if six.PY3 and isinstance(packet_text, str):
packet_text = packet_text.encode("utf-8")


Best regards,
Celelibi

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 
'testing-debug'), (500, 'unstable')
Architecture: i386 (x86_64)

Kernel: Linux 3.10.11 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)

Versions of packages python3-socketio-client depends on:
ii  python3-requests   2.12.4-1
ii  python3-six1.10.0-3
ii  python3-websocket  0.37.0-2

python3-socketio-client recommends no packages.

python3-socketio-client suggests no packages.

-- no debconf information

Bug#862980: Update the homepage, to show the social face of the project, and be more attractive for newcomers

[Martin Vahi]

On 05/19/2017 05:59 PM, Laura Arjona Reina wrote:
>...
> At the Diversity and Inclusion BoF in MiniDebConf Cambridge 2016 [1]
> it has been suggested to update the Debian website frontpage exposing
> more the social part of the project (currently, it's very centered in
> Debian the OS).
> 
> [1]:
> http://meetings-archive.debian.net/pub/debian-meetings/2016/miniconf_cambridge16/Diversity_and_Inclusion_BoF.webm
> 
> Other suggestions/comments, in order to make the website more
> attractive to newcomers:
> 
> https://lists.debian.org/debian-devel/2017/05/msg00134.html
> https://lists.debian.org/debian-devel/2017/05/msg00157.html
> 
> A rewording of the two paragraphs about Debian in the homepage could
> be a good start.
> ...
> For sending your proposals, any way is welcome:
> * Plain text with the new paragraphs
> * html
> * diff against the current source file:
> https://anonscm.debian.org/viewvc/webwml/webwml/english/index.wml
> ...


Culture does determine, how a group of people
carries out a task, including software development.
However, in the same vain, the culture of open source
software development is not the culture of hanging
out and feeling cuddly. The American and British culture
does differ from German and North-European cultures
by the fact that the Brits and the Americans seem to
evaluate the presence of other people's company much more
than North-Europeans and Estonians do. Germans seem to be
somewhere between, closer to North-Europeans than the Brits.

(Due to some plunder by Estonian
 politicians and Pulblic Relations specialists
 Estonia is now officially classified as
 a Northern country, but I as a native Estonian
 think that Estonia is really NOT a Northern
 country and that the Estonian culture has its
 own "quirks", which sometimes are for the better
 and sometimes are for the worse. But, again,
 generally speaking, we do tend to be perceived
 as "cold" by the Brits, sometimes even by Germans,
 but it does hold that, again, I'm generalizing here,
 that the Estonian engineering tradition tilts
 very much to the side, where basically, when an
 Estonian looks at a web page of an open source project,
 the main thought in his/her head is, despite the
 fact that he/she does not say it out loud,
 at least not in that kind of wording:

 "Get me the technical facts without
  the marketing bullshit and cut the social crap,
  keep the social crap to Yourself! If I want socializing,
  I'll do it among the people that I CHOOSE and
  at a setting that I CHOOSE and at a time that I CHOOSE."

That's at least the case with native Estonians,
which includes me. Estonian Russians are "friendlier",
more social, but what I gather from my Estonian Russian
friends, they are not "too thrilled" either, if
they stumble on social chit-chat at a place, where they
expect technical, hard, straight to the point, details.
It's OK, even endorsed, to be thorough and go into lengthy
details, but those details must really be technical details,
not some text reflecting gratitude towards some sponsor or
party that helped, nor are other social stories acceptable,
unless they are relevant to the set of technical requirements.)

My suggestion is that in stead of trying to cram
as much information to the front page as possible

(Example of a failure.)
http://web.archive.org/web/20040117054617/http://www.intel.com/

or to go to the other extreme, where the front page does
not contain almost anything technical but a few
marketing slogans, which can be swapped out from
marketing slogans from 10 years ago without anybody noticing

   (Example of a failure, where in stead of
   relevant information total nonsense marketing slogans
   are displayed, which are so useless that slogans
   from 10 years ago could be used without anybody noticing, id est
   the, "We know the future, because we're building it", or
   the "It's time for an upgrade", or
   the "Accelerate Your experience", etc.)
   https://archive.is/RPt63


a more structured approach can be helpful.
The main page of the Debian project might be
totally clean of everything, except a few,
straight to the point, links that lead to
"totally different", target audience related, "worlds",
which can have totally different rules and styles.
The main page links might be named:


x) Sales Pitch: A 100% volunteer developed Linux distribution that has
   the planet Earth's largest package collection.
x) Social Interaction
x) Technical Details

That's it. only those 3 links and the 3 regions
would be totally separate worlds with very different
style rules and goals. Website administrative details
would be at some sub-page of the "Social Interaction" link.
The sales pitch links leads to a page with introductory
videos, user stories, news, etc. The news link can be
shared by the "Social Interaction" world and the

Bug#863046: crash in menu->client

[Markus Koschany]

Control: tags -1 moreinfo
Control: severity -1 normal

Am 20.05.2017 um 21:20 schrieb PICCORO McKAY Lenz:
> Package: minetest
> Version: 0.4.15+repack-1
> Severity: serious
> 
> 
> after many tests, Minetest package is buggy only on one thing: crash
> when in main menu go to Client; i paste the trace, the other in menu
> "server" works:
[...]
> terminate called after throwing an instance of 'LuaError'
>   what():  Runtime error from mod '' in callback run(): Type is not
> convertible to string
> stack traceback:
> [C]: in function 'func'
> /usr/share/games/minetest/builtin/async/init.lua:10: in function
> 
> Aborted
> 
> NOTE: default debian minetest server package are running and up when i
> made all the test and play many mods and games
> 

I am not able to reproduce this with a default Minetest installation.
Please use the reportbug tool next time which supplies additional
information about your system. On which architecture do you play minetest?

Is this issue reproducible with a fresh installation of minetest on your
system? If yes, how?

What mods do you have installed on your system because I see you get a
runtime error from some unknown mod. Minetest mods which are not
packaged and available in Debian are not supported though and are a
frequent cause for crashes. This is not actionable by Debian and should
be reported to the mod developer.

Markus




signature.asc
Description: OpenPGP digital signature

Bug#827171: lxcfs knows that

[Adam Borowski]

Lookie here:
https://github.com/lxc/lxcfs/commit/9ac264cfb0836a013af6fa31a4e4c01afe72255a
And, despite the commit message mentioning only /proc/stat, it also changes
/proc/uptime so all is fine as long as the host has lxcfs >= 2.0.7-1.

This of course works only on containers started using lxc, rather than a
zillion other chroot+cgroups+unshare wrappers, such as docker, systemd, etc. 


Meow!
-- 
Don't be racist.  White, amber or black, all beers should be judged based
solely on their merits.  Heck, even if occasionally a cider applies for a
beer's job, why not?
On the other hand, corpo lager is not a race.

Bug#863047: ITP: python-langdetect -- Port of Google's language-detection library to Python.

[Hugo Lefeuvre]

Package: wnpp
Severity: wishlist

* Package name: python-langdetect
  Version : 1.0.7
  Upstream Author : Michal Mimino Danilak 
* URL : https://github.com/Mimino666/langdetect
* License : Apache-2.0
  Programming Lang: Python 3
  Description : Port of Google's language-detection library to Python.

Needed by orangeassassin.

-- 
 Hugo Lefeuvre (hle)|www.owl.eu.com
4096/ ACB7 B67F 197F 9B32 1533 431C AC90 AC3E C524 065E


signature.asc
Description: PGP signature

Bug#863046: crash in menu->client

[PICCORO McKAY Lenz]

Package: minetest
Version: 0.4.15+repack-1
Severity: serious


after many tests, Minetest package is buggy only on one thing: crash
when in main menu go to Client; i paste the trace, the other in menu
"server" works:

minetest
2017-05-20 15:04:00: [Main]: Automatically selecting world at
[/home/jennifer/.minetest/worlds/test]
2017-05-20 15:04:00: WARNING[Main]: Could not load icon file
'/usr/share/icons/hicolor/128x128/apps/minetest.png'
2017-05-20 15:04:00: WARNING[Main]: Could not load icon file
'/usr/share/games/minetest/misc/minetest-xorg-icon-128.png'
Loaded texture: /usr/share/games/minetest/games/minetest_game/menu/header.png
Loaded texture: /usr/share/games/minetest/games/minetest_game/menu/icon.png
Loaded texture: /usr/share/games/minetest/games/minimal/menu/icon.png
Loaded texture: /usr/share/games/minetest/textures/base/pack/blank.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_favorite.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_creative.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_damage.png
Loaded texture:
/usr/share/games/minetest/textures/base/pack/server_flags_pvp.png
terminate called after throwing an instance of 'LuaError'
  what():  Runtime error from mod '' in callback run(): Type is not
convertible to string
stack traceback:
[C]: in function 'func'
/usr/share/games/minetest/builtin/async/init.lua:10: in function

Aborted

NOTE: default debian minetest server package are running and up when i
made all the test and play many mods and games


Lenz McKAY Gerardo (PICCORO)
http://qgqlochekone.blogspot.com

Bug#863045: at: interactively please print parsed time at start

[Daniel Shahaf]

Package: at
Version: 3.1.16-1
Control: found -1 3.1.20-3
Severity: minor

Dear Maintainer,

Currently, at(1) prints the time at the end:

$ at tomorrow 
warning: commands will be executed using /bin/sh
at> : hello world 
at> 
job 10 at Sun May 21 19:06:00 2017
$ 

Please print the time before the first prompt, i.e., next to the warning.
This will help catching mistakes sooner.

Thanks!

Daniel
(I'm on jessie but I eyeballed the sid version (3.1.20-3) before reporting.)

Bug#862307: mate-control-center: desktop background settings no longer honored

[brian m. carlson]

On Thu, May 11, 2017 at 12:02:40AM +, brian m. carlson wrote:
> Package: mate-control-center
> Version: 1.16.1-1
> Severity: normal
> 
> I recently restarted my computer (after quite some time) and noticed
> that my custom background is being ignored.  Instead, I have the default
> background from desktop-base.
> 
> I'm unclear whether this is a mate-settings-daemon bug or a
> mate-control-center bug, or whether the problem lies elsewhere entirely.

This is in fact a mate-settings-daemon bug.  Downgrading it and the
-common package to 1.16.0-2 fixes the problem.  It might be a good idea
to get a fix for this into stretch.
-- 
brian m. carlson / brian with sandals: Houston, Texas, US
+1 832 623 2791 | https://www.crustytoothpaste.net/~bmc | My opinion only
OpenPGP: https://keybase.io/bk2204


signature.asc
Description: PGP signature

Bug#855249: icedove: Cannot open attachments after upgrading to Stretch

[Carsten Schoenert]

On Sat, May 20, 2017 at 09:09:21AM -0700, Hong Xu wrote:
 
> I switched apparmor to complain mode and it works now. Are you
> suggesting that now the updated apparmor profile should address this issue?

I'm not that familiar with apparmor but the question is if the current
apprarmor profile or thunderbird is preventing all the needed access. So
you can look into the logs what's the reason why evince isn't called for
example.

Without a look into the respective logs the profile can't be expanded
correctly.

Please note also some info about apparmor for Thunderbird written in
the Debian Wiki.

https://wiki.debian.org/Thunderbird#AppArmor_profile
https://wiki.debian.org/AppArmor/Debug

Regards
Carsten

Bug#845297: push-pull CVS/GIT

[Osamu Aoki]

Hi,

This is FYI.

cvs to git migration is slow if you use git-cvsimport with the remote
repository due to the network latency.  When I tried to create www local
copy in git for me to work on it and commit back to CVS, I created
git-cvs script.

   https://github.com/osamuaoki/git-cvs

Here, I clone CVS with rsync/ssh.  Normally slow git-cvsimport is run
locally to get very fast processing for large repository like
www.debian.org

I even created a push script from git to CVS.

There are 2 ways to sync with CVS. 

I hope this may be of some use for you.

I never got to do it but the next step was to make this export script to
work with the git submodule which I never got to do.

I think Japanese translation people runs git server and the commit to
git is committed to PO in CVS as I understand.  I don't know exactly how
it works. (Kenshi Muto  runs it I suppose.)

Osamu

Bug#863044: Hans Sachs from The Meistersinger

[Anthony DeRobertis]

Package: fortunes
Version: 1:1.99.1-7
Severity: wishlist

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

"Die Kunstwerk', die ein Schuster schuf,
 sie tritt die Welt mit Füssen!"

"A cobbler's works of art
 are trod upon by all the world!"

   -- Hans Sachs in Die Meistersinger von Nürnberg, Act II, Scene VI
  (Richard Wagner).

- -- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'testing'), (500, 'stable'), (130, 'unstable'), (120, 'experimental'), (1, 
'experimental-debug')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.6.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)

Versions of packages fortunes depends on:
ii  fortunes-min  1:1.99.1-7

Versions of packages fortunes recommends:
ii  fortune-mod  1:1.99.1-7+b1

fortunes suggests no packages.

- -- no debconf information

-BEGIN PGP SIGNATURE-

iHMEARECADMWIQTlAc7j4DAtSNRJJ0z7P4jCVepZ/gUCWSCBuRUcYW50aG9ueUBk
ZXJvYmVydC5uZXQACgkQ+z+IwlXqWf6wPgCfQd3e7njzm09zBzQOUbEAAux5mV8A
nRTNRAm1hURlwJknuv6aaghWUrOU
=01dq
-END PGP SIGNATURE-

Bug#863043: vdradmin-am: missing dependency: Can't locate CGI.pm

[Stefan Zechner]

Package: vdradmin-am
Version: 3.6.10-2
Severity: important

Dear Maintainer,

after upgrading to stretch vdradmin-am didn't run anymore.

starting vdramind responds with:
Can't locate CGI.pm in @INC (you may need to install the CGI module) (@INC 
contains: /usr/bin/lib/ /usr/share/perl5/vdradmin-am /etc/perl 
/usr/local/lib/x86_64-linux-gnu/perl/5.24.1 /usr/local/share/perl/5.24.1 
/usr/lib/x86_64-linux-gnu/perl5/5.24 /usr/share/perl5 
/usr/lib/x86_64-linux-gnu/perl/5.24 /usr/share/perl/5.24 
/usr/local/lib/site_perl /usr/lib/x86_64-linux-gnu/perl-base) at 
/usr/bin/vdradmind line 64.
BEGIN failed--compilation aborted at /usr/bin/vdradmind line 64.

Installing libcgm-pm-perl fixed the problem.

I suppose this package is missing in the dependencies.

thanks
Stefan


-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages vdradmin-am depends on:
ii  adduser 3.115
ii  libintl-perl1.26-2
ii  libio-socket-inet6-perl 2.72-2
ii  liblocale-gettext-perl  1.07-3+b1
ii  libperl5.24 [libio-compress-perl]   5.24.1-2
ii  libsocket6-perl 0.27-1+b1
ii  libtemplate-perl2.24-1.2+b3
ii  libtemplate-plugin-javascript-perl  0.02-1
ii  liburi-perl 1.71-1
ii  libwww-perl 6.15-1
ii  lsb-base9.20161125
pn  perl:any

vdradmin-am recommends no packages.

Versions of packages vdradmin-am suggests:
pn  libauthen-sasl-perl   
ii  vdr   2.2.0-6+b1
ii  vdr-plugin-epgsearch  1.0.1~beta6+git20150211-4+b1

-- Configuration Files:
/etc/default/vdradmin-am changed [not included]

-- no debconf information

Bug#839575: hangs waiting for openssl

[Stefan Bühler]

Hi,

tinyca hangs due to a regression in openssl, fixed in:


https://github.com/openssl/openssl/commit/888adbe064556ff5ab2f1d16a223b0548696614c

The tinyca code quality is still very low - very close to unacceptable
for something handling private keys and crypto.

* it builds strings to execute with /bin/sh -c "...", and quotes 
  filenames using \"$filename\" in perl.  It should pass the command
  and arguments as list instead - it's not that complicated.
* trying to respond to the openssl interactive mode seems a very bad
  idea.
* when I close tinyca (working on an existing setup) perl crashes with 
  a segfault (no idea who to blame for this, see attached 
  tinyca-perl-valgrind.txt)

cheers,
Stefan
==28880== Invalid read of size 8
==28880==at 0x68C9678: ??? (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2BDB: g_signal_emit_valist (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2FBE: g_signal_emit (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0xB4CEA5F: ??? (in 
/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0.2400.31)
==28880==by 0x68BCC04: g_object_unref (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68DF3EF: g_value_unset (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2C11: g_signal_emit_valist (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2FBE: g_signal_emit (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0xB5C74F4: ??? (in 
/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0.2400.31)
==28880==by 0x68BCC04: g_object_unref (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x666EF99: ??? (in 
/usr/lib/x86_64-linux-gnu/perl5/5.24/auto/Glib/Glib.so)
==28880==by 0x1DC0BF: Perl_pp_entersub (in /usr/bin/perl)
==28880==  Address 0xffeffebc8 is on thread 1's stack
==28880==  2280 bytes below stack pointer
==28880== 
==28880== Invalid read of size 8
==28880==at 0x68C9670: ??? (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2BDB: g_signal_emit_valist (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2FBE: g_signal_emit (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0xB4CEA5F: ??? (in 
/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0.2400.31)
==28880==by 0x68BCC04: g_object_unref (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68DF3EF: g_value_unset (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2C11: g_signal_emit_valist (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2FBE: g_signal_emit (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0xB5C74F4: ??? (in 
/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0.2400.31)
==28880==by 0x68BCC04: g_object_unref (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x666EF99: ??? (in 
/usr/lib/x86_64-linux-gnu/perl5/5.24/auto/Glib/Glib.so)
==28880==by 0x1DC0BF: Perl_pp_entersub (in /usr/bin/perl)
==28880==  Address 0xffeffebc0 is on thread 1's stack
==28880==  2288 bytes below stack pointer
==28880== 
==28880== Conditional jump or move depends on uninitialised value(s)
==28880==at 0x68C967C: ??? (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2BDB: g_signal_emit_valist (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2FBE: g_signal_emit (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0xB4CEA5F: ??? (in 
/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0.2400.31)
==28880==by 0x68BCC04: g_object_unref (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68DF3EF: g_value_unset (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2C11: g_signal_emit_valist (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2FBE: g_signal_emit (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0xB5C74F4: ??? (in 
/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0.2400.31)
==28880==by 0x68BCC04: g_object_unref (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x666EF99: ??? (in 
/usr/lib/x86_64-linux-gnu/perl5/5.24/auto/Glib/Glib.so)
==28880==by 0x1DC0BF: Perl_pp_entersub (in /usr/bin/perl)
==28880== 
==28880== Conditional jump or move depends on uninitialised value(s)
==28880==at 0x68C9676: ??? (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2BDB: g_signal_emit_valist (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0x68D2FBE: g_signal_emit (in 
/usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0.5000.3)
==28880==by 0xB4CEA5F: ??? (in 
/usr/lib/x86_64-linux-gnu/libgtk-x11-2.0.so.0.2400.31)
==28880==by 0x68BCC04: 

Bug#830884: Closing the bug

[Anton Gladky]

Control: tags -1 + wontfix

Hi Francesco,

thanks for your bugreport. Gnuplot4 is outdated and is not supported
any more. Please switch to Gnuplot5.

Best regards

Anton

Bug#863042: dehydrated: insecure file permissions by default

[Alexander Gerasiov]

Hello Alexander,

On Sat, 20 May 2017 19:25:03 +0300
Alexander GQ Gerasiov  wrote:

> 
> -- System Information:
> Debian Release: 9.0
>   APT prefers testing
>   APT policy: (700, 'testing'), (670, 'stable-updates'), (670,
> 'stable'), (600, 'unstable'), (550, 'experimental') Architecture:
> amd64 (x86_64)

Ouch. System in topic is Jessie(i386) + backports.


-- 
Best regards,
 Alexander Gerasiov

 Contacts:
 e-mail: g...@cs.msu.su  Homepage: http://gerasiov.net  Skype: gerasiov
 PGP fingerprint: 04B5 9D90 DF7C C2AB CD49  BAEA CA87 E9E8 2AAC 33F1

Bug#861752: libgit2: embeds unnecessary 3rd-party source files in deps/

[Russell Sim]

Hi Ximin,

I can't figure out how this feature works.  Despite applying the patch I
have attached, it seems that it doesn't actually strip the files I expect
it to.  Do you have any suggestions?\

$ uscan --download-current-version --verbose
uscan info: uscan (version 2.17.5) See uscan(1) for help
uscan info: Scan watch files in .
uscan info: Check debian/watch and debian/changelog in ./.git/refs/tags
uscan info: Check debian/watch and debian/changelog in .
uscan info: package="libgit2" version="0.25.1-1" (as seen in
debian/changelog)
uscan info: package="libgit2" version="0.25.1" (no epoch/revision)
uscan info: ./debian/changelog sets package="libgit2" version="0.25.1"
uscan info: Process ./debian/watch (package=libgit2 version=0.25.1)
uscan info: opts:
compression=xz,repack,filenamemangle=s/.+\/v?(\d\S*)\.tar\.gz/libgit2-$1\.tar\.gz/
uscan info: line: https://github.com/libgit2/libgit2/releases
.*/v?([\d.]*)\.tar\.gz
uscan info: Parsing compression=xz
uscan info: Parsing repack
uscan info: Parsing
filenamemangle=s/.+\/v?(\d\S*)\.tar\.gz/libgit2-$1\.tar\.gz/
uscan info: line: https://github.com/libgit2/libgit2/releases
.*/v?([\d.]*)\.tar\.gz
uscan info: Last orig.tar.* tarball version (from debian/changelog): 0.25.1
uscan info: Download the --download-current-version specified version:
0.25.1
uscan info: Requesting URL:
   https://github.com/libgit2/libgit2/releases
uscan info: Matching pattern:
   (?:(?:https://github.com
)?\/libgit2\/libgit2\/releases)?.*/v?([\d.]*)\.tar\.gz
uscan info: Found the following matching hrefs on the web page (newest
first):
   /libgit2/libgit2/archive/v0.25.1.tar.gz (0.25.1) index=0.25.1-1 matched
with the download version
   /libgit2/libgit2/archive/v0.25.0.tar.gz (0.25.0) index=0.25.0-1
   /libgit2/libgit2/archive/v0.24.6.tar.gz (0.24.6) index=0.24.6-1
   /libgit2/libgit2/archive/v0.24.5.tar.gz (0.24.5) index=0.24.5-1
   /libgit2/libgit2/archive/v0.24.4.tar.gz (0.24.4) index=0.24.4-1
   /libgit2/libgit2/archive/v0.24.3.tar.gz (0.24.3) index=0.24.3-1
   /libgit2/libgit2/archive/v0.24.2.tar.gz (0.24.2) index=0.24.2-1
   /libgit2/libgit2/archive/v0.24.1.tar.gz (0.24.1) index=0.24.1-1
uscan info: Matching target for downloadurlmangle:
https://github.com/libgit2/libgit2/archive/v0.25.1.tar.gz
uscan info: Upstream URL (downloadurlmangled):
   https://github.com/libgit2/libgit2/archive/v0.25.1.tar.gz
uscan info: Newest upstream tarball version selected for download
(uversionmangled): 0.25.1
uscan info: Matching target for filenamemangle:
/libgit2/libgit2/archive/v0.25.1.tar.gz
uscan info: Download filename (filenamemangled): libgit2-0.25.1.tar.gz
uscan: Newest version of libgit2 on remote site is 0.25.1, specified
download version is 0.25.1
uscan info: Not downloading, using existing file: libgit2-0.25.1.tar.gz
uscan info: Start checking for common possible upstream OpenPGP signature
files
uscan info: End checking for common possible upstream OpenPGP signature
files
uscan info: Missing OpenPGP signature.
uscan info: New orig.tar.* tarball version (oversionmangled): 0.25.1
uscan info: Executing internal command:
   mk-origtargz --package libgit2 --version 0.25.1 --repack --compression
xz --directory .. --copyright-file debian/copyright ../libgit2-0.25.1.tar.gz
uscan info: New orig.tar.* tarball version (after mk-origtargz): 0.25.1
uscan info: Successfully repacked ../libgit2-0.25.1.tar.gz as
../libgit2_0.25.1.orig.tar.xz.
uscan info: Scan finished

$ tar tJf ../libgit2_0.25.1.orig.tar.xz | grep deps
libgit2-0.25.1/deps/
libgit2-0.25.1/deps/http-parser/
libgit2-0.25.1/deps/http-parser/LICENSE-MIT
libgit2-0.25.1/deps/http-parser/http_parser.c
libgit2-0.25.1/deps/http-parser/http_parser.h
libgit2-0.25.1/deps/regex/
libgit2-0.25.1/deps/regex/config.h
libgit2-0.25.1/deps/regex/regcomp.c
libgit2-0.25.1/deps/regex/regex.c
libgit2-0.25.1/deps/regex/regex.h
libgit2-0.25.1/deps/regex/regex_internal.c
libgit2-0.25.1/deps/regex/regex_internal.h
libgit2-0.25.1/deps/regex/regexec.c
libgit2-0.25.1/deps/winhttp/
libgit2-0.25.1/deps/winhttp/urlmon.h
libgit2-0.25.1/deps/winhttp/winhttp.def
libgit2-0.25.1/deps/winhttp/winhttp.h
libgit2-0.25.1/deps/winhttp/winhttp64.def
libgit2-0.25.1/deps/zlib/
libgit2-0.25.1/deps/zlib/adler32.c
libgit2-0.25.1/deps/zlib/crc32.c
libgit2-0.25.1/deps/zlib/crc32.h
libgit2-0.25.1/deps/zlib/deflate.c
libgit2-0.25.1/deps/zlib/deflate.h
libgit2-0.25.1/deps/zlib/infback.c
libgit2-0.25.1/deps/zlib/inffast.c
libgit2-0.25.1/deps/zlib/inffast.h
libgit2-0.25.1/deps/zlib/inffixed.h
libgit2-0.25.1/deps/zlib/inflate.c
libgit2-0.25.1/deps/zlib/inflate.h
libgit2-0.25.1/deps/zlib/inftrees.c
libgit2-0.25.1/deps/zlib/inftrees.h
libgit2-0.25.1/deps/zlib/trees.c
libgit2-0.25.1/deps/zlib/trees.h
libgit2-0.25.1/deps/zlib/zconf.h
libgit2-0.25.1/deps/zlib/zlib.h
libgit2-0.25.1/deps/zlib/zutil.c
libgit2-0.25.1/deps/zlib/zutil.h
libgit2-0.25.1/script/install-deps-osx.sh


On 3 May 2017 at 16:24, Ximin Luo  wrote:

> Source: libgit2
> Version: 0.24.5-1
> Severity: minor
>
> 

Bug#863040: rawtherapee: Crash at lauch time with message: Error in rawtherapee: munmap_chunk(): invalid pointer

[Philip Rinn]

Control: tags -1 jessie
Control: fixed -1 5.0-1


Hi,

this only affects jessie. Seem to be a problem with libpng12, probably just a
binNMU is needed. I'll check during the next days.
You could try by rebuilding rawtherapee from source[1] with roughly those 
commands
[didn't test them]:

apt-get source rawtherapee
sudo apt-get build-dep rawtherapee
cd rawtherapee-4.2
debuild -b -uc -us
cd ..
sudo dpkg -i rawtherapee*.deb


Best,
Philip

[1] https://wiki.debian.org/BuildingTutorial





signature.asc
Description: OpenPGP digital signature

Bug#863042: dehydrated: insecure file permissions by default

[Alexander GQ Gerasiov]

Source: dehydrated
Version: 0.3.1-3~bpo8+1
Severity: serious
Tags: security

dehydrated package by default create private files with word-readable
permissions.

How I got this:
I installed dehydrated 0.3.1-3~bpo8+1
Put my domain with subdomains to /etc/dehydrated/domains.txt and run
# dehydrated -c
as root user
(I dont know does it matter or not, but first runs failed because I did
not setup challenge dir for all subdomain.)

After cerificates and keys was generated I found that files are
readable by anyone in the system:
dnsmasq@master:~$ ls -la /var/lib/dehydrated/certs/gerasiov.net/privkey*
-rw-r--r-- 1 root root 3243 май 20 12:35 
/var/lib/dehydrated/certs/gerasiov.net/privkey-1495272909.pem
-rw-r--r-- 1 root root 3243 май 20 12:40 
/var/lib/dehydrated/certs/gerasiov.net/privkey-1495273211.pem
private keys

dnsmasq@master:~$ ls -la 
/var/lib/dehydrated/accounts/aH...VjdG9yeQo/account_key.pem
-rw-r--r-- 1 root root 3243 май 20 12:35 
/var/lib/dehydrated/accounts/aH...VjdG9yeQo/account_key.pem
accout key


-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (700, 'testing'), (670, 'stable-updates'), (670, 'stable'), (600, 
'unstable'), (550, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=ru_RU.utf8, LC_CTYPE=ru_RU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#863041: yubikey-personalization: fails to handle more than one yubikey

[Julien Cristau]

Package: yubikey-personalization
Version: 1.17.3-1
Severity: important
User: debian-ad...@lists.debian.org
Usertag: needed-by-DSA-Team

Hi,

whenever more than one yubikey is plugged into a host, the tools refuse
to do anything with a "expected only one YubiKey but several present"
error, and don't seem to provide any way to specify which device to
query / operate on.  That makes things rather annoying.  Even
restricting access to the dev nodes isn't enough, since the presence of
several yubikeys in sysfs is enough to get ykcore confused.

Cheers,
Julien

-- System Information:
Debian Release: 9.0
  APT prefers testing-debug
  APT policy: (900, 'testing-debug'), (900, 'testing'), (500, 
'unstable-debug'), (500, 'stable-updates'), (500, 'unstable'), (500, 'stable'), 
(101, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages yubikey-personalization depends on:
ii  libc6  2.24-10
ii  libjson-c3 0.12.1-1.1
ii  libusb-1.0-0   2:1.0.21-1
ii  libykpers-1-1  1.17.3-1
ii  libyubikey01.13-2

yubikey-personalization recommends no packages.

yubikey-personalization suggests no packages.

-- no debconf information

Bug#863029: unblock (pre-approval): game-data-packager/49.1

[Simon McVittie]

Control: tags -1 - moreinfo

On Sat, 20 May 2017 at 12:20:00 +, Niels Thykier wrote:
> On Sat, 20 May 2017 13:10:03 +0100 Simon McVittie  wrote:
> > game-data-packager in experimental (v51) fixes a non-RC but annoying
> > regression from jessie (#860998) which we would like to fix in stretch
> > (currently at v49).
> 
> Ack, please go ahead.

Uploaded and built everywhere. No diff since what you preapproved,
other than the suite and release date for the changelog entry.

(One small correction, this is a backport of selected changes from
versions 50 to 52 in experimental, not 50 to 51 as I said before.)

S

Bug#855249: icedove: Cannot open attachments after upgrading to Stretch

[Hong Xu]

On 05/20/2017 01:33 AM, Carsten Schoenert wrote:
> Hello Hong Xu,
> 
> On Wed, Feb 15, 2017 at 03:26:37PM -0800, Hong Xu wrote:
> ... 
>> It asks the confirmation to open it. However, after click open, the "Launch
>> application" window pops up to ask for an application to open it. I selected 
>> an
>> application, e.g., evince for PDF files, but it failed to launch the
>> application.
>>
>>* What outcome did you expect instead?
>>
>> After clicking "open" in the confirmation dialog, the attachment should be
>> opened immediately.
> 
> you have apparmor installed and probably active, I assume every thing
> goes back to normal if you disable the apparmor profile for testing. Or
> does it work in the between times? There was soem update on apparmor
> profile for TB recently in the last uploads.
>  
>> Versions of packages icedove suggests:
>> ii  apparmor  2.11.0-2  <

I switched apparmor to complain mode and it works now. Are you
suggesting that now the updated apparmor profile should address this issue?

Bug#863040: rawtherapee: Crash at lauch time with message: Error in rawtherapee: munmap_chunk(): invalid pointer

[PhLinuX]

Package: rawtherapee
Version: 4.2-1+deb8u2
Severity: grave
Tags: upstream
Justification: renders package unusable

Dear Maintainer,

I just installed rawtherapee and therefore never used before.

Launched rawtherapee, UI appear less than one second then crash with message:
libpng error: incorrect data check
*** Error in `rawtherapee': munmap_chunk(): invalid pointer: 0x7fda90060910
***
Abandon

Tried using gdb: gdb rawtherapee

Program received signal SIGABRT, Aborted.
[Switching to Thread 0x7fffb67fc700 (LWP 16050)]
0x730af067 in __GI_raise (sig=sig@entry=6) at
.../nptl/sysdeps/unix/sysv/linux/raise.c:56
56  ../nptl/sysdeps/unix/sysv/linux/raise.c: Aucun fichier ou dossier de ce
type.

(gdb) bt
#0  0x730af067 in __GI_raise (sig=sig@entry=6) at
.../nptl/sysdeps/unix/sysv/linux/raise.c:56
#1  0x730b0448 in __GI_abort () at abort.c:89
#2  0x730ed1b4 in __libc_message (do_abort=do_abort@entry=1,
fmt=fmt@entry=0x731e2210 "*** Error in `%s': %s: 0x%s ***\n")
at ../sysdeps/posix/libc_fatal.c:175
#3  0x730f298e in malloc_printerr (action=1, str=0x731e2238
"munmap_chunk(): invalid pointer", ptr=) at malloc.c:4996
#4  0x7774f6ea in inflateEnd () from /lib/x86_64-linux-gnu/libz.so.1
#5  0x77970c0f in png_read_destroy () from /lib/x86_64-linux-
gnu/libpng12.so.0
#6  0x77970db6 in png_destroy_read_struct () from /lib/x86_64-linux-
gnu/libpng12.so.0
#7  0x55ca0f72 in rtengine::ImageIO::loadPNG(Glib::ustring) ()
#8  0x55ca424e in rtengine::ImageIO::load(Glib::ustring) ()
#9  0x55b87b7f in rtengine::StdImageSource::load(Glib::ustring, bool)
()
#10 0x55ba4aaa in rtengine::Thumbnail::loadFromImage(Glib::ustring
const&, int&, int&, int, double) ()
#11 0x559cdf63 in Thumbnail::_generateThumbnailImage() ()
#12 0x559cf2b9 in Thumbnail::Thumbnail(CacheManager*, Glib::ustring
const&, std::string const&) ()
#13 0x5585b26b in CacheManager::getEntry(Glib::ustring const&) ()
#14 0x5592c081 in PreviewLoader::Impl::processNextJob() ()
#15 0x76d49b02 in ?? () from /usr/lib/x86_64-linux-
gnu/libglibmm-2.4.so.1
#16 0x76fdb1d8 in ?? () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#17 0x76fda845 in ?? () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#18 0x7342d064 in start_thread (arg=0x7fffb67fc700) at
pthread_create.c:309
#19 0x7316262d in clone () at
.../sysdeps/unix/sysv/linux/x86_64/clone.S:111
(gdb)

Also got the RT 4.2 branch from RT git source and compiled it but wasn't be
able to compile it successfully as gtk+-3.0 >= 3.16 is needed and this version
doesn't exist into the jessie repo yet (only 3.14 found in gir1.2-gtk3.0).



-- System Information:
Debian Release: 8.8
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/8 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages rawtherapee depends on:
ii  libatkmm-1.6-1  2.22.7-2.1
ii  libbz2-1.0  1.0.6-7+b3
ii  libc6   2.19-18+deb8u9
ii  libcairomm-1.0-11.10.0-1.1
ii  libcanberra-gtk00.30-2.1
ii  libcanberra00.30-2.1
ii  libexpat1   2.1.0-6+deb8u3
ii  libfftw3-single33.3.4-2
ii  libgcc1 1:4.9.2-10
ii  libglib2.0-02.42.1-1+b1
ii  libglibmm-2.4-1c2a  2.42.0-1
ii  libgomp14.9.2-10
ii  libgtk2.0-0 2.24.25-3+deb8u1
ii  libgtkmm-2.4-1c2a   1:2.24.4-1.1
ii  libiptcdata01.0.4-4
ii  libjpeg62-turbo 1:1.3.1-12
ii  liblcms2-2  2.6-3+deb8u1
ii  libpangomm-1.4-12.34.0-1.1
ii  libpng12-0  1.2.50-2+deb8u3
ii  libsigc++-2.0-0c2a  2.4.0-1
ii  libstdc++6  4.9.2-10
ii  libtiff54.0.3-12.3+deb8u3
ii  rawtherapee-data4.2-1+deb8u2
ii  zlib1g  1:1.2.8.dfsg-2+b1

rawtherapee recommends no packages.

rawtherapee suggests no packages.

-- no debconf information

Bug#862988: dante-server: Job for danted.service failed because the control process exited with error code during installation

[Daniel Bareiro]

On 20/05/17 10:17, Peter Pentchev wrote:

>> Package: dante-server
>> Version: 1.4.1+dfsg-4
>> Severity: important
>>
>> Dear Maintainer,
>>
>> I am trying to install dante-server in Debian Stretch but the
>> installations fails with the following error:
>>
>> ---
>> root@defiant:~# aptitude install dante-server
> [snip]
>> Job for danted.service failed because the control process exited with error 
>> code.
>> See "systemctl status danted.service" and "journalctl -xe" for details.
>> invoke-rc.d: initscript danted, action "start" failed.
> [snip]
>> may 19 13:21:14 defiant systemd[1]: Starting SOCKS (v4 and v5) proxy daemon 
>> (danted)...
>> may 19 13:21:14 defiant danted[15761]: May 19 13:21:14 (1495210874.811468) 
>> danted[15761]: warning: checkconfig(): no socks authentication metho…t 
>> intended?
>> may 19 13:21:14 defiant danted[15761]: May 19 13:21:14 (1495210874.811545) 
>> danted[15761]: error: checkconfig(): no internal address given for s… 
>> clients on
>> may 19 13:21:14 defiant danted[15761]: May 19 13:21:14 (1495210874.811565) 
>> danted[15761]: alert: mother[1/1]: shutting down
>> may 19 13:21:14 defiant systemd[1]: danted.service: Control process exited, 
>> code=exited status=1
>> may 19 13:21:14 defiant systemd[1]: Failed to start SOCKS (v4 and v5) proxy 
>> daemon (danted).

> Hi,

Hi, Peter.

> Yeah, I guess I'll have to fix that at some point, probably before the
> stretch release.  Right after installation, the sample config file for
> dante-server does not specify any network interfaces at all (obviously,
> since nothing is known at that point), but then the dante server is
> automatically started, so it fails, and the installation itself fails.
> The correct fix would be to make dante-server not start automatically on
> installation; I'll take a look at this in the next couple of days.
> 
> In the meantime, could you try to take a look at the /etc/danted.conf
> file, configure it for your use case (at the very least, specify the
> listening address, and maybe some rules), then try to start the
> dante-server service?  If this works, if the dante-server service may be
> started properly, you can then run:
> 
>   dpkg-reconfigure -a
> 
> ...to let dpkg and apt complete the package installation.
> 
> Sorry about that, I keep forgetting about it :(  I'll fix it soon.
> 
> Thanks for your interest in Dante!

Thanks for your reply.

I added a minimal configuration, specifying the internal and external
interfaces and then running "aptitude reinstall dante-server". This
seems to solve the issue with the installation and then the service
starts without problems:

--
# aptitude reinstall dante-server
Se REINSTALARÁN los siguientes paquetes:
  dante-server
0 paquetes actualizados, 0 nuevos instalados, 1 reinstalados, 0 para
eliminar y 0 sin actualizar.
Necesito descargar 0 B/373 kB de ficheros. Después de desempaquetar se
usarán 0 B.
(Leyendo la base de datos ... 162559 ficheros o directorios instalados
actualmente.)
Preparando para desempaquetar .../dante-server_1.4.1+dfsg-4_amd64.deb ...
Desempaquetando dante-server (1.4.1+dfsg-4) sobre (1.4.1+dfsg-4) ...
Procesando disparadores para systemd (232-23) ...
Configurando dante-server (1.4.1+dfsg-4) ...
Procesando disparadores para man-db (2.7.6.1-2) ...
--

--
# tail -F /var/log/sockd.log | ccze -A
May 20 12:42:45 (1495294965.380768) danted[14627]: warning:
checkconfig(): no socks authentication methods enabled.  This means all
socks requests will be blocked after negotiation.  Perhaps this is not
intended?
May 20 12:42:45 (1495294965.396822) danted[14628]: info:
Dante/server[1/1] v1.4.1 running
--


Thanks for your time.

Kind regards,

-- 
Ing. Daniel Bareiro

Opción Libre - Soberanía tecnológica para su empresa
WWW: http://www.opcion-libre.com.ar
Tel: +54 11 5235-3090
Correo-e: conta...@opcion-libre.com.ar



signature.asc
Description: OpenPGP digital signature

Bug#834915: node-temp: FTBFS (AssertionError: temp.createWriteStream did not create a file)

[Santiago Vila]

On Thu, 8 Dec 2016, Jérémy Lal wrote:

> 2016-12-08 16:30 GMT+01:00 Santiago Vila :
> > retitle 834915 node-temp: FTBFS (AssertionError: temp.createWriteStream did 
> > not create a file)
> > thanks
> >
> > It really happens all the time, and it also happens here:
> >
> > https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/node-temp.html
> 
> I'm not reproducing it in a sbuild schroot.
> However i updated the package and enabled the tests in autopkgtest,
> but there's no point in uploading it if it doesn't fix the issue.

Hi. Sorry for the late reply.

I built this package 196 times today, on a lot of different
machines.

It failed 121 times, so it fails for me more than 60% of the time.

I've put all the build logs here:

https://people.debian.org/~sanvila/build-logs/node-temp/


I suspect that there is either a race condition somewhere,
or the code depends on filesystem ordering.

Can you think about how this could happen by looking at the code
and a failed build log?

[ As a last resort, I could provide a machine for you to reproduce
  this (please contact me privately for details) ]

Thanks.

Bug#863036: lua5.3 is not available in update-alternatives for lua(interpreter|compiler)

[Vincent Bernat]

control: found -1 5.3.3-1

<#secure method=pgpmime mode=sign>
 ❦ 20 mai 2017 14:30 +0100, Gwilym Kuiper  :

>* What led up to the situation?
> I wanted to set my default lua interpreter to lua5.3
>
>* What exactly did you do (or not do) that was effective (or
>  ineffective)?
> Tried running
>
> $ sudo update-alternatives --config lua-interpreter
> There are 2 choices for the alternative lua-interpreter (providing
> /usr/bin/lua).
>
>   SelectionPath Priority   Status
> 
> * 0/usr/bin/lua5.2   120   auto mode
>   1/usr/bin/lua5.1   110   manual mode
>   2/usr/bin/lua5.2   120   manual mode
>
> Similar output for lua-compiler

The version in unstable has the same bug. I don't know if Enrico dropped
the alternative system on purpose for lua5.3. I'll update the backport
when we decide what we do with this issue.
-- 
Test programs at their boundary values.
- The Elements of Programming Style (Kernighan & Plauger)

Bug#863038: systemd-timesyncd ignores FallbackNTP config setting

[Michael Biebl]

Am 20.05.2017 um 16:20 schrieb Marcus Jodorf:
> Package: systemd
> Version: 232-23
> Severity: normal
> 
> 
> systemd-timesyncd ignores FallbackNTP
> config settings in /etc/systemd/timesyncd.conf
> 
> If FallbackNTP is set and no other configuration is existing
> in all the other places listed in timesyncd.conf(5) manpage,
> it instead falls back to compiled-in ntp servers
> (0.debian.pool.ntp.org and so on).
> 

Can you place share your complete configuration and then provide a debug
log:
systemd-analyze set-log-level debug
systemctl restart systemd-timesyncd
journalctl -u systemd-timesyncd.service

Regards,
Michael


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#862752: chromium: 404 pages can't be found

[Michael Gilbert]

control: tag -1 moreinfo, unreproducible
control: severity -1 minor

You probably have apache misconfigured.  It will normally return a
Content-Location field, which will help you determine whether you got
redirected correctly.  This might help [0].

It's also possible that the X-XSS_protection field may cause chromium
to do this, but when in devtools would it's maybe ignored.

Best wishes,
Mike

[0] 
https://www.digitalocean.com/community/tutorials/how-to-configure-apache-to-use-custom-error-pages-on-ubuntu-14-04

Bug#863026: [Python-modules-team] Bug#863026: Broken symlinks break collecstatic on deploy

[Enrico Zini]

On Sat, May 20, 2017 at 09:07:53PM +1000, Brian May wrote:

> Sorry, I am confused. You say this happens in Jessie, but refer to
> version 3.4.0-2 which is in stretch and sid.
> 
> In any case, it sounds like this bug, which *is* fixed in 3.4.0-2:
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858811

Yes, my mistake, I found the bug on nono.debian.org (jessie) but I
reported it from my laptop (testing).

I noticed after sending the bug, then tried to send found/notfound
commands to fix the versions, but apparently I didn't manage to mark
3.4.0-2 as fixed.

I'm sorry I didn't notice #858811, I guess since it doesn't know it
affects stable, it got closed and archived.


Enrico

-- 
GPG key: 4096R/634F4BD1E7AD5568 2009-05-08 Enrico Zini 

Bug#863031: RM: nikola/7.6.4-1

[Dererk]

Dear reader,

Just to clarify on this matter and to serve as a confirmation, there has
been several attempts to upload most modern versions of this packages
(the collab-maint doesn't lie).

Unfortunately, we faced several times upload after upload, by some way
or the other, crashing over the current JS & CSS Debian's archive
policy, around several dozens symlinks (literally speaking), that made
totally both impractical and a total f^$%# mess to maintain.

Nikola also is a fast evolving software that usually force us (the
maintainers of nikola), to upload a couple of new dependences after new
upstream release. This is totally awesome from the standpoint of
upstream, since they reuse lots of code from other projects, but also
render maintaining nikola on debian a little bit more lag behind too.

We both (tin@ and myself) support RM of nikola, maybe in the future
efforts would match, currently thats not the case.


Cheers,

Dererk

On behalf of nikola maintainers

PS: sucks to have been delaying this so much, my sincere apologies.


On 20/05/17 10:04, martin f krafft wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: rm
>
> The current version in stable is almost 2 years old. Bug#801796 has
> been tracking the requests for new versions to be packaged. However,
> the maintainer hasn't engaged. Upstream co-maintainer Chris Warrick
> has made it clear in #801796 that they'd rather not have nikola in
> Debian, than an ancient version that annoys people and causes them
> spurious bug reports.
>
> Given how nobody has put in any work on nikola in almost 2 years,
> I think we should have the decency to remove the package from
> stretch and sid before the release.
>
> nikola has no reverse dependencies, so…
>
> -- System Information:
> Debian Release: 9.0
>   APT prefers unstable
>   APT policy: (500, 'unstable'), (1, 'experimental')
> Architecture: amd64
>  (x86_64)
> Foreign Architectures: i386
>
> Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
> Locale: LANG=en_NZ, LC_CTYPE=en_NZ.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: systemd (via /run/systemd/system)
>
>

-- 
There's nothing in the middle of the road but yellow stripes and dead
armadillos.
-- Jim Hightower, Texas Agricultural Commissioner

Bug#863039: libwvstreams4.6-base: wvdial crashes with Assertion `*current_task->stack_magic == WVTASK_MAGIC' failed

[Mash]

Package: libwvstreams4.6-base
Version: 4.6.1-11
Severity: important

Dear Maintainer,

After upgrading from jessie to sid wvdial is unusable. When trying to 
connect it stops on error:
wvdial: utils/wvtask.cc:303: static int WvTaskMan::yield(int): Assertion 
`*current_task->stack_magic == WVTASK_MAGIC' failed.


Was trying to downgrade to 4.6.1-7 version wich causes another error:
wvdial: utils/wvtask.cc:303: static int WvTaskMan::yield(int): Assertion 
`*current_task->stack_magic == 0x123678' failed.


Debugging:
(gdb) r
Starting program: /usr/bin/wvdial
--> WvDial: Internet dialer version 1.61
--> Initializing modem.
--> Sending: AT+CGDCONT=1,"IP",""
AT+CGDCONT=1,"IP",""
OK
--> Sending: ATQ0 V1 E1 S0=0   +FCLASS=0
ATQ0 V1 E1 S0=0   +FCLASS=0
OK
--> Modem initialized.
--> Sending: ATDT*99#
--> Waiting for carrier.
ATDT*99#
wvdial: utils/wvtask.cc:303: static int WvTaskMan::yield(int): Assertion 
`*current_task->stack_magic == WVTASK_MAGIC' failed.


Program received signal SIGABRT, Aborted.
0x766dafcf in raise () from /lib/x86_64-linux-gnu/libc.so.6
(gdb) c
Continuing.

Program terminated with signal SIGABRT, Aborted.
The program no longer exists.


-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (990, 'unstable'), (100, 'testing')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libwvstreams4.6-base depends on:
ii  libc6   2.24-10
ii  libgcc1 1:6.3.0-18
ii  libstdc++6  6.3.0-18
ii  zlib1g  1:1.2.8.dfsg-5

libwvstreams4.6-base recommends no packages.

libwvstreams4.6-base suggests no packages.

-- no debconf informatio

Bug#863038: systemd-timesyncd ignores FallbackNTP config setting

[Marcus Jodorf]

Package: systemd
Version: 232-23
Severity: normal


systemd-timesyncd ignores FallbackNTP
config settings in /etc/systemd/timesyncd.conf

If FallbackNTP is set and no other configuration is existing
in all the other places listed in timesyncd.conf(5) manpage,
it instead falls back to compiled-in ntp servers
(0.debian.pool.ntp.org and so on).

Best regards,

Marcus Jodorf

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.11.0 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#862008: crashes, segmentation fault

[Samuel Thibault]

Control: reassign -1 at-spi2-core
Control: done -1 2.22.0-6

Hello,

I believe the upstream fixes for this bug have been uploaded in the
latest versions of at-spi2-core & atk, now in testing.

Samuel

Bug#862452: Update to newer QtWebKit

[Lisandro Damián Nicanor Pérez Meyer]

On domingo, 14 de mayo de 2017 01:57:22 -03 Konstantin Tokarev wrote:
> 13.05.2017, 19:00, "Dmitry Shachnev" :
> > Hi Konstantin,
> > 
> > On Sat, May 13, 2017 at 01:42:12PM +0300, Konstantin Tokarev wrote:
> >>  Note that there is unofficial package already:
> >> 
> >>  http://repo.paretje.be/unstable/#
> >> 
> >>  See packages libqt5webkit5, libqt5webkit5-dev
> >> 
> >>  Git repo of package is at
> >>  https://gitlab.com/paretje/qtwebkit/tree/master/debian
> >> 
> >>  Package is loosely based of webkitgtk's, and contains a few build
> >>  dependencies that are not actually needed:
> >> 
> >>  libharfbuzz-dev, libfreetype6-dev, libfontconfig1-dev (these are used
> >> when
> >>  qtbase is built, not directly in qtwebkit)
> >>  libgnutls28-dev, libsoup2.4-dev, libenchant-dev, geoclue-2.0,
> >>  libsecret-1-dev - not used at all
> >>  libxt-dev - probably unused as well
> >> 
> >>  Otherwise, packaging files look good to me
> > 
> > Thanks for the information, it is very helpful!
> > 
> > On Sat, May 13, 2017 at 02:03:10PM +0300, Konstantin Tokarev wrote:
> >>  Also, note that upcoming release is intended to be a drop-in replacement
> >> of old QtWebKit to be used with older Qt versions too, as security
> >> update.> 
> > This is also helpful, but if you mean that we should update the packages
> > in Stretch too, then probably the answer is that we don’t have enough time
> > for it...
> 
> Yes, it would be great to update package in Stretch. What should be done to
> make it possible?

At this point in time, nothing. Too late I'm afraid.
 
> It would be great to have package in backports repo for Jessie

That will not happen because in order for a package to be able to be in 
jessie-backports it's very same version should be available in stretch. And we 
can't push it to stretch now.

It might be possible to add it to stretch-backports once we get it into 
testing (ie, after stretch's release) but I am not really interested in doing 
it myself.

Kinds regards, Lisandro.

-- 
"One World, One web, One program" - Microsoft Promo ad.
"Ein Volk, Ein Reich, Ein Führer" - Adolf Hitler

Lisandro Damián Nicanor Pérez Meyer
http://perezmeyer.com.ar/
http://perezmeyer.blogspot.com/


signature.asc
Description: This is a digitally signed message part.

Bug#863037: subversion: description += _dav_svn;

[Daniel Shahaf]

Package: subversion
Version: 1.9.5-1
Severity: minor

Good morning James / *,

The package description reads:

> Description-en: Advanced version control system
>  Apache Subversion, also known as svn, is a centralised version control
>  system.  Version control systems allow many individuals (who may be
>  distributed geographically) to collaborate on a set of files (source
>  code, websites, etc).  Subversion began with a CVS paradigm and
>  supports all the major features of CVS, but has evolved to support
>  many features that CVS users often wish they had.
>  .
>  This package includes the Subversion client (svn), repository
>  administration tools (svnadmin, svnlook) and a network server (svnserve).

I suggest to:

1. Change "client (svn)" to "client (svn, svnsync)".

2. State that mod_dav_svn is found in the libapache2-mod-svn package.
(Perhaps that package could even become a Suggests: ; I'm not sure.)

Cheers,

Daniel

Bug#863031: RM: nikola/7.6.4-1

[Adam D. Barratt]

Control: reassign -1 ftp.debian.org

On Sat, 2017-05-20 at 15:04 +0200, martin f krafft wrote:
> The current version in stable is almost 2 years old. Bug#801796 has
> been tracking the requests for new versions to be packaged. However,
> the maintainer hasn't engaged. Upstream co-maintainer Chris Warrick
> has made it clear in #801796 that they'd rather not have nikola in
> Debian, than an ancient version that annoys people and causes them
> spurious bug reports.
> 
> Given how nobody has put in any work on nikola in almost 2 years,
> I think we should have the decency to remove the package from
> stretch and sid before the release.
> 
> nikola has no reverse dependencies, so…

As this request includes removal from unstable, it needs to be handled
by the ftp team; re-assigning.

Regards,

Adam

Bug#852962: ycmd FTBFS on mipsel: test failures

[Julien Cristau]

Control: severity -1 serious

On Wed, Feb  1, 2017 at 10:49:34 +0100, Emilio Pozuelo Monfort wrote:

> Somehow this has built now:
> 
> https://buildd.debian.org/status/logs.php?pkg=ycmd=0%2B20161219%2Bgit486b809-1=mipsel
> 
> Let's downgrade for now.
> 
Next upload failed again, somebody needs to look at this.

Cheers,
Julien

Bug#863031: RM: nikola/7.6.4-1

[Chris Warrick]

I confirm that the current situation is undesirable to us. There were
attempts by other Debian devs to fix this (last in January), but nothing
changed. Having to say that the package is unsupported every once in a
while gets tiring quickly.

Since there aren't that many users, and a manual install with pip is easy
to do, dropping this package won't be much of a problem in my opinion. (Of
course, if there is a substantial possibility of getting something more
modern in Debian repos, that would be even better.)

-- 
Chris Warrick 

On 20 May 2017 15:06, "martin f krafft"  wrote:

> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: rm
>
> The current version in stable is almost 2 years old. Bug#801796 has
> been tracking the requests for new versions to be packaged. However,
> the maintainer hasn't engaged. Upstream co-maintainer Chris Warrick
> has made it clear in #801796 that they'd rather not have nikola in
> Debian, than an ancient version that annoys people and causes them
> spurious bug reports.
>
> Given how nobody has put in any work on nikola in almost 2 years,
> I think we should have the decency to remove the package from
> stretch and sid before the release.
>
> nikola has no reverse dependencies, so…
>
> -- System Information:
> Debian Release: 9.0
>   APT prefers unstable
>   APT policy: (500, 'unstable'), (1, 'experimental')
> Architecture: amd64
>  (x86_64)
> Foreign Architectures: i386
>
> Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
> Locale: LANG=en_NZ, LC_CTYPE=en_NZ.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: systemd (via /run/systemd/system)
>
>
> --
>  .''`.   martin f. krafft  @martinkrafft
> : :'  :  proud Debian developer
> `. `'`   http://people.debian.org/~madduck
>   `-  Debian - when you have better things to do than fixing systems
>

Bug#863033: strip-nondeterminism: Only print log messages by default if a file has been modified

[Holger Levsen]

control: severity -1 important
thanks

On Sat, May 20, 2017 at 02:05:20PM +0100, Chris Lamb wrote:
> This is not only noisy in-of itself (!) and somewhat misleading, it also
> defeats the point of adding these particular log messages in the first place;
> we should only be printing if we modified the file so we can start to remove
> normalizers from strip-nondeterminism.

thus raising the severity of this bug, as this has a major impact without
making it unusable for everyone.


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#862995: [Pkg-libvirt-maintainers] Bug#862995: [l10n] Please install localisation files

[Laurent Bigonville]

Le 20/05/17 à 12:23, Guido Günther a écrit :

On Fri, May 19, 2017 at 09:08:10PM +0200, Laurent Bigonville wrote:

Source: libvirt
Version: 3.0.0-4bigon1
Severity: wishlist
Tags: l10n

Hi,

I can see that the different translations files are not installed in any
packages.

Shouldn't these be installed in libvirt-client or libvirt-daemon?

or maybe separate i18n package since they're rarely needed.
Cheers,


Well I disagree that this is not often needed, I think that l10n and 
i18n is quite important for the users (but that's maybe because I'm used 
to have everything translated in French :p).


If the translations are shipped in a different package, a Depends or 
Recommends should be added to be sure it's pulled by default

Bug#818328: "Publicity" section in intro/organization (organization.data)

[Laura Arjona Reina]

Hi

Thanks for the comments.

I'm attaching a patch that creates "Communication and Outreach" as I
proposed, but leaving Consultants under "Support and infrastructure"
as Martin Michlmayr suggested. I've moved "DebConf Committee" to this
"Communication and Outreach" section, next to "Events".

I'm attaching what would be the resultant organization.data file, too.

If there are no objections, I will apply it in a few days.

For including wiki and translations work, I'll open two different
bugs, because for translations we may use scripting similar to the one
used for "user support", and for wiki, I'd like to CC the wiki team.

Best regards

-- 
Laura Arjona Reina
https://wiki.debian.org/LauraArjona
#use wml::debian::language_names
#use wml::debian::common_tags

#include "$(ENGLISHDIR)/devel/leader.data"



# Delegates
# Installation
# Mailing list


%attributes —
mailto:%0;>%0
— https://lists.debian.org/%0;>delegation mail
— https://lists.debian.org/%0;>appointment mail
# One male delegate
 (delegate)
# One female delegate
 (delegate)
# current* is only for positions necessarily transitional, such as the leader

current

current %0 mailto:%1;>%1

member

member %0 mailto:%1;>%1
# for release team we use , ,  and 

manager

Stable Release 
Manager">SRM

wizard
# we only use the chairman tag once, for techctte, I wonder why it's here.

chairman
# assistant tag added for DPL "second in command"

assistant

secretary

%attributes

# --

# there is no officers page, yet
# Officers

Officers
Distribution
Communication and 
Outreach
Support and 
Infrastructure
# formerly Custom Debian Distributions (CCDs); see 
https://blends.alioth.debian.org/blends/ch-about.en.html#s-Blends
Debian Pure 
Blends



Officers


  Leader> 

  Technical Committee>   
Didier Raboud
Philip Hands
Sam Hartman
Tollef Fog Heen
Keith Packard
Margarita Manterola
  Secretary>  
Kurt Roeckx



Distribution


  Development Projects> 
  https://ftp-master.debian.org/;>FTP Archives>  
  
FTP 
Masters>
  Ansgar Burchardt 
  Joerg Jaspert 
  Mark Hymers 
FTP 
Assistants>
  Alexander Reichle-Schmehl
  Chris Lamb
  Gergely Nagy
  Luca Falavigna
  Luke Faraone
  Paul Tagliamonte
  Scott Kitterman
  Thorsten Alteholz
FTP 
Wizards>
  Mike O'Connor
  Torsten Werner
  
http://backports-master.debian.org/;>Backports>  
  
  Backports 
Team>
Alexander Wirt
Rhonda D'Vine
  
 Individual Packages> 
packagename@packages.debian.org
  Release 
Management>
  
https://release.debian.org/;>Release Team>  
  Niels Thykier
  Emilio Pozuelo Monfort
  Adam D. Barratt
  Julien Cristau
  Philipp Kern
  Andreas Barth
  Felipe Augusto van de Wiel
  Ivo De Decker
  Julien Cristau
  Jonathan Wiltshire
  Cyril Brulebois
  Mehdi Dogguy
https://qa.debian.org/;>Quality Assurance> 
Installation System 
Team> 
Release 
Notes> 
  Wolfgang Martin Borgert
CD 
Images>

  Production> 
Philip Hands
Raphal Hertzog
Richard Atterer
Santiago Garca Mantin
Steve McIntyre
Mattias Wadenstein

Testing> 
  
  https://buildd.debian.org/;>Autobuilding infrastructure>
  
Wanna-build 
team> 
  Andreas Barth
  Aurelien Jarno
  Joachim Breitner
  Kurt Roeckx
  Marc Brockschmidt
  Mehdi Dogguy
  Philipp Kern
Buildd 
administration> architecture@buildd.debian.org
  Andreas Barth
  Aurelien Jarno
  Christoph Egger
  Colin Tuckley
  Dann Frazier
  Frederik Schler
  Hector Oron
  Konstantinos Margaritis
  Kurt Roeckx
  LaMont Jones
  Marc Brockschmidt
  Michael Banck
  Peter De Schrijver
  Philipp Kern
  Riku Voipio
  Samuel Thibault
  Wouter Verhelst
  
  Documentation> 
Javier Fernndez-Sanguino
W. Martin Borgert
Osamu Aoki
Josip Rodin
  Work-Needing and Prospective Packages list> 

David Moreno Garza
Matej Vela
  http://live.debian.net/;>Live System Team> 
  Ports — GNU/Linux>

Alpha> 
  
  
  
AMD64> 
ARM> 
i386> 
IA-64> 
  Dann Frazier
m68k> 
MIPS> 
PA-RISC> 
  Carlos O'Donell
  John David Anglin
  Thibaut Varene
PowerPC> 

S/390> 
  Philipp Kern
SPARC/UltraSPARC> 

  Jurij Smakov
SuperH> 
  
  GNU/Hurd> 
Jeff Bailey
Michael Banck
Pino Toscano
Samuel Thibault
Svante Signell
  GNU/kFreeBSD> 

Robert Millan
Steven Chamberlain
Petr Salinger
Christoph Egger
  Special 
Configurations>
  
Beowulf> 

Laptops> 
Firewalls> 
Embedded 
systems> 
  



Communication and Outreach


   https://wiki.debian.org/Teams/Publicity;>Publicity team>  
Ana Guerrero Lopez
Cédric Boutillier
Laura Arjona Reina
Donald Norwood
Press Contact — 

Bug#863035: RFS: forge/1.0.1 [experimental]

[Ghislain Vaillant]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for my package "forge"

* Package name: forge
  Version : 1.0.1-1
  Upstream Author : ArrayFire
* URL : https://github.com/arrayfire/forge
* License : BSD
  Section : libs

One can check out the package by visiting the following URL
(experimental branch):

  https://anonscm.debian.org/git/debian-science/packages/forge.git

Changes since the last upload:

  * Switch from git-dpm to gbp
  * New upstream version 1.0.1
  * Rebase the patch queue
- Drop 0003-Consistent-definition-of-USE_SYSTEM-flags-for-glbind.patch,
  applied upstream
- Refresh 0004-Fix-spelling-errors.patch
  * Build depends on Boost
  * Bump soversion to 1
  * Update copyright information

Best regards,
Ghis

Bug#863036: lua5.3 is not available in update-alternatives for lua(interpreter|compiler)

[Gwilym Kuiper]

Package: lua5.3
Version: 5.3.1-1~bpo8+1
Severity: normal

Dear Maintainer,

   * What led up to the situation?
I wanted to set my default lua interpreter to lua5.3

   * What exactly did you do (or not do) that was effective (or
 ineffective)?
Tried running

$ sudo update-alternatives --config lua-interpreter
There are 2 choices for the alternative lua-interpreter (providing
/usr/bin/lua).

  SelectionPath Priority   Status

* 0/usr/bin/lua5.2   120   auto mode
  1/usr/bin/lua5.1   110   manual mode
  2/usr/bin/lua5.2   120   manual mode

Similar output for lua-compiler

   * What outcome did you expect instead?
/usr/bin/lua5.3 is an option on this list



-- System Information:
Debian Release: 8.8
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages lua5.3 depends on:
ii  libc6 2.19-18+deb8u9
ii  libreadline6  6.3-8+b3

lua5.3 recommends no packages.

lua5.3 suggests no packages.

-- no debconf information

Bug#862988: dante-server: Job for danted.service failed because the control process exited with error code during installation

[Peter Pentchev]

On Fri, May 19, 2017 at 01:43:37PM -0300, Daniel Bareiro wrote:
> Package: dante-server
> Version: 1.4.1+dfsg-4
> Severity: important
> 
> Dear Maintainer,
> 
> I am trying to install dante-server in Debian Stretch but the
> installations fails with the following error:
> 
> ---
> root@defiant:~# aptitude install dante-server
[snip]
> Job for danted.service failed because the control process exited with error 
> code.
> See "systemctl status danted.service" and "journalctl -xe" for details.
> invoke-rc.d: initscript danted, action "start" failed.
[snip]
> may 19 13:21:14 defiant systemd[1]: Starting SOCKS (v4 and v5) proxy daemon 
> (danted)...
> may 19 13:21:14 defiant danted[15761]: May 19 13:21:14 (1495210874.811468) 
> danted[15761]: warning: checkconfig(): no socks authentication metho…t 
> intended?
> may 19 13:21:14 defiant danted[15761]: May 19 13:21:14 (1495210874.811545) 
> danted[15761]: error: checkconfig(): no internal address given for s… clients 
> on
> may 19 13:21:14 defiant danted[15761]: May 19 13:21:14 (1495210874.811565) 
> danted[15761]: alert: mother[1/1]: shutting down
> may 19 13:21:14 defiant systemd[1]: danted.service: Control process exited, 
> code=exited status=1
> may 19 13:21:14 defiant systemd[1]: Failed to start SOCKS (v4 and v5) proxy 
> daemon (danted).

Hi,

Yeah, I guess I'll have to fix that at some point, probably before the
stretch release.  Right after installation, the sample config file for
dante-server does not specify any network interfaces at all (obviously,
since nothing is known at that point), but then the dante server is
automatically started, so it fails, and the installation itself fails.
The correct fix would be to make dante-server not start automatically on
installation; I'll take a look at this in the next couple of days.

In the meantime, could you try to take a look at the /etc/danted.conf
file, configure it for your use case (at the very least, specify the
listening address, and maybe some rules), then try to start the
dante-server service?  If this works, if the dante-server service may be
started properly, you can then run:

  dpkg-reconfigure -a

...to let dpkg and apt complete the package installation.

Sorry about that, I keep forgetting about it :(  I'll fix it soon.

Thanks for your interest in Dante!

G'luck,
Peter

-- 
Peter Pentchev  r...@ringlet.net r...@freebsd.org p...@storpool.com
PGP key:http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint 2EE7 A7A5 17FC 124C F115  C354 651E EFB0 2527 DF13


signature.asc
Description: PGP signature

Bug#863034: unblock: strip-nondeterminism/0.034-1

[Chris Lamb]

Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org

Dear Release Team,

Please consider unblocking strip-nondetermism 0.034-1:

  strip-nondeterminism (0.034-1) unstable; urgency=medium

[ Chris Lamb ]
* Only print log messages by default if the file was actually modified
  rather than if we merely identified a file (see 0.033-1). This was not
  only noisy in-of itself and somewhat misleading, it moreover defeated the
  point of adding these log messages in the first place - ie. identifying
  normalizers we can start to remove from strip-nondeterminism.
  (Closes: #863033)

[ Bernhard M. Wiedemann ]
* zip: make sure we have permissions on extracted file
* Add function prototypes.

   -- Chris Lamb   Sat, 20 May 2017 15:19:52 +0200


The full debdiff is attached.


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-
diffstat for strip-nondeterminism-0.033 strip-nondeterminism-0.034

 bin/dh_strip_nondeterminism |4 ++--
 debian/changelog|   16 
 lib/File/StripNondeterminism.pm |   10 +-
 lib/File/StripNondeterminism/Common.pm  |2 +-
 lib/File/StripNondeterminism/handlers/gettext.pm|2 +-
 lib/File/StripNondeterminism/handlers/jar.pm|6 +++---
 lib/File/StripNondeterminism/handlers/javadoc.pm|2 +-
 lib/File/StripNondeterminism/handlers/javaproperties.pm |4 ++--
 lib/File/StripNondeterminism/handlers/pearregistry.pm   |2 +-
 lib/File/StripNondeterminism/handlers/png.pm|8 
 lib/File/StripNondeterminism/handlers/zip.pm|   11 ++-
 11 files changed, 42 insertions(+), 25 deletions(-)

diff -Nru strip-nondeterminism-0.033/bin/dh_strip_nondeterminism 
strip-nondeterminism-0.034/bin/dh_strip_nondeterminism
--- strip-nondeterminism-0.033/bin/dh_strip_nondeterminism  2017-05-07 
19:31:07.0 +0200
+++ strip-nondeterminism-0.034/bin/dh_strip_nondeterminism  2017-05-20 
15:16:18.0 +0200
@@ -83,8 +83,8 @@
 
foreach (@nondeterministic_files) {
my ($path, $normalize) = @$_;
-   nonquiet_print("Normalizing $path");
-   eval { $normalize->($path); 1 }
+   verbose_print("Normalizing $path");
+   eval { $normalize->($path) or nonquiet_print("Normalized 
$path"); 1; }
  or error("$path: $@");
}
 }
diff -Nru strip-nondeterminism-0.033/debian/changelog 
strip-nondeterminism-0.034/debian/changelog
--- strip-nondeterminism-0.033/debian/changelog 2017-05-08 11:52:36.0 
+0200
+++ strip-nondeterminism-0.034/debian/changelog 2017-05-20 15:19:52.0 
+0200
@@ -1,3 +1,19 @@
+strip-nondeterminism (0.034-1) unstable; urgency=medium
+
+  [ Chris Lamb ]
+  * Only print log messages by default if the file was actually modified
+rather than if we merely identified a file (see 0.033-1). This was not
+only noisy in-of itself and somewhat misleading, it moreover defeated the
+point of adding these log messages in the first place - ie. identifying
+normalizers we can start to remove from strip-nondeterminism.
+(Closes: #863033)
+
+  [ Bernhard M. Wiedemann ]
+  * zip: make sure we have permissions on extracted file
+  * Add function prototypes.
+
+ -- Chris Lamb   Sat, 20 May 2017 15:19:52 +0200
+
 strip-nondeterminism (0.033-2) unstable; urgency=medium
 
   * Correct temmporary -> temporary typo in package long description. Thanks
diff -Nru strip-nondeterminism-0.033/lib/File/StripNondeterminism/Common.pm 
strip-nondeterminism-0.034/lib/File/StripNondeterminism/Common.pm
--- strip-nondeterminism-0.033/lib/File/StripNondeterminism/Common.pm   
2017-05-07 19:31:07.0 +0200
+++ strip-nondeterminism-0.034/lib/File/StripNondeterminism/Common.pm   
2017-05-20 15:16:18.0 +0200
@@ -35,7 +35,7 @@
 # 2. This function simulates file editing of "$to_path".
 # 3. After this function, "$to_path" would be a file associated with
 #a copied "data" from "from_path" and a "inode" from "$to_path".
-sub copy_data {
+sub copy_data($$) {
my $from_path = shift;
my $to_path = shift;
 
diff -Nru 
strip-nondeterminism-0.033/lib/File/StripNondeterminism/handlers/gettext.pm 
strip-nondeterminism-0.034/lib/File/StripNondeterminism/handlers/gettext.pm
--- strip-nondeterminism-0.033/lib/File/StripNondeterminism/handlers/gettext.pm 
2017-05-07 19:31:07.0 +0200
+++ strip-nondeterminism-0.034/lib/File/StripNondeterminism/handlers/gettext.pm 
2017-05-20 15:16:18.0 +0200
@@ -24,7 +24,7 @@
 use strict;
 use warnings;
 
-sub read_file {
+sub read_file($) {
my $filename = shift;
 
local $/ = undef;
diff -Nru 

Bug#863016: poppler: CVE-2017-9083

[Salvatore Bonaccorso]

Control: severity -1 minor

Hi Jason,

On Sat, May 20, 2017 at 07:39:02AM -0500, Jason Crain wrote:
> On Sat, May 20, 2017 at 10:30:17AM +0200, Salvatore Bonaccorso wrote:
> > the following vulnerability was published for poppler.
> > 
> > CVE-2017-9083[0]:
> > | poppler 0.54.0, as used in Evince and other products, has a NULL
> > | pointer dereference in the JPXStream::readUByte function in
> > | JPXStream.cc. For example, the perf_test utility will crash
> > | (segmentation fault) when parsing an invalid PDF file.
> 
> Does this apply to Debian's poppler?  I think uses openjpeg instead of
> the internal JPX decoder.

I think you are right. While checking, I looked at the source only,
not realizing that it's not relevant for the built binary packages due
to your note.

I changed the severity, and in the security-tracker it is now marked
as 'unimportant', which is the tag used when a source is affected, but
the issue does not affect the built binary packages.

Thanks a lot for checking the bugreport!

Salvatore

Bug#863033: strip-nondeterminism: Only print log messages by default if a file has been modified

[Chris Lamb]

tags 863033 + pending
thanks

Fixed in Git:

  
https://anonscm.debian.org/git/reproducible/strip-nondeterminism.git/commit/?id=fef1708d76a6820963ddc8d9f96c5640863f9cfe


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#765929: crimson produces high system load when music option turned on, but no music

[Kyuma Ohta]

Package: crimson
Version: 0.5.2-1.1+b1
Followup-For: Bug #765929

Dear Maintainer,

With recent version, this has a lot of memory leak mainly 
caused by fluidsynth via libSDL_mixer1.2.

I run crimson with valgrind --leak-check=full. 

Best regards,
Ohta.

--- LOG is below: ---
==22565== Memcheck, a memory error detector
==22565== Copyright (C) 2002-2015, and GNU GPL'd, by Julian Seward et al.
==22565== Using Valgrind-3.12.0 and LibVEX; rerun with -h for copyright info
==22565== Command: crimson
==22565== 
==22565== Conditional jump or move depends on uninitialised value(s)
==22565==at 0x508C167: X11_SetKeyboardState (SDL_x11events.c:1344)
==22565==by 0x508C863: X11_DispatchEvent (SDL_x11events.c:508)
==22565==by 0x508CF6A: X11_PumpEvents (SDL_x11events.c:933)
==22565==by 0x5062F6B: SDL_PumpEvents (SDL_events.c:376)
==22565==by 0x5062FD8: SDL_WaitEvent (SDL_events.c:406)
==22565==by 0x1488B7: View::FetchEvent(SDL_Event&) (view.cpp:284)
==22565==by 0x149850: Window::EventLoop() (window.cpp:286)
==22565==by 0x1130CB: main (main.cpp:124)
==22565== 
==22565== Conditional jump or move depends on uninitialised value(s)
==22565==at 0x508C188: X11_SetKeyboardState (SDL_x11events.c:1347)
==22565==by 0x508C863: X11_DispatchEvent (SDL_x11events.c:508)
==22565==by 0x508CF6A: X11_PumpEvents (SDL_x11events.c:933)
==22565==by 0x5062F6B: SDL_PumpEvents (SDL_events.c:376)
==22565==by 0x5062FD8: SDL_WaitEvent (SDL_events.c:406)
==22565==by 0x1488B7: View::FetchEvent(SDL_Event&) (view.cpp:284)
==22565==by 0x149850: Window::EventLoop() (window.cpp:286)
==22565==by 0x1204A4: Game::StartTurn() (game.cpp:470)
==22565==by 0x12100A: Game::EndTurn() (game.cpp:832)
==22565==by 0x12051A: Game::StartTurn() (game.cpp:513)
==22565==by 0x12100A: Game::EndTurn() (game.cpp:832)
==22565==by 0x1217F3: Game::WidgetActivated(Widget*, Window*) 
(game.cpp:2001)
==22565== 
==22565== 
==22565== HEAP SUMMARY:
==22565== in use at exit: 791,437,547 bytes in 24,947,095 blocks
==22565==   total heap usage: 37,873,116 allocs, 12,926,021 frees, 
1,438,700,702 bytes allocated
==22565== 
==22565== 2 bytes in 2 blocks are possibly lost in loss record 3 of 225
==22565==at 0x4C2BBAF: malloc (vg_replace_malloc.c:299)
==22565==by 0x7C4AEA0: fluid_track_set_name (fluid_midi.c:1083)
==22565==by 0x7C4B483: fluid_midi_file_read_event (fluid_midi.c:565)
==22565==by 0x7C4B8BA: fluid_midi_file_read_track (fluid_midi.c:368)
==22565==by 0x7C4B9FC: fluid_midi_file_load_tracks (fluid_midi.c:265)
==22565==by 0x7C4C20A: fluid_player_load (fluid_midi.c:1519)
==22565==by 0x7C4C2C9: fluid_player_playlist_load (fluid_midi.c:1568)
==22565==by 0x7C4C47A: fluid_player_callback (fluid_midi.c:1607)
==22565==by 0x7C3F54B: fluid_sample_timer_process (fluid_synth.c:484)
==22565==by 0x7C3F5CF: fluid_synth_render_blocks (fluid_synth.c:2774)
==22565==by 0x7C425D6: fluid_synth_write_s16 (fluid_synth.c:2632)
==22565==by 0x550E37B: fluidsynth_playsome (fluidsynth.c:197)
==22565== 
==22565== 10 bytes in 1 blocks are definitely lost in loss record 10 of 225
==22565==at 0x4C2BBAF: malloc (vg_replace_malloc.c:299)
==22565==by 0x6D45084: _XlcDefaultMapModifiers (in 
/usr/lib/x86_64-linux-gnu/libX11.so.6.3.0)
==22565==by 0x6D45465: XSetLocaleModifiers (in 
/usr/lib/x86_64-linux-gnu/libX11.so.6.3.0)
==22565==by 0x509299F: create_aux_windows (SDL_x11video.c:498)
==22565==by 0x50939F1: X11_VideoInit (SDL_x11video.c:704)
==22565==by 0x5085285: SDL_VideoInit (SDL_video.c:246)
==22565==by 0x505CCEB: SDL_InitSubSystem (SDL.c:89)
==22565==by 0x505CD63: SDL_Init (SDL.c:162)
==22565==by 0x112514: init (main.cpp:223)
==22565==by 0x112514: main (main.cpp:89)
==22565== 
==22565== 16 bytes in 2 blocks are definitely lost in loss record 22 of 225
==22565==at 0x4C2BBAF: malloc (vg_replace_malloc.c:299)
==22565==by 0x60611D9: strdup (strdup.c:42)
==22565==by 0x6D53996: ??? (in /usr/lib/x86_64-linux-gnu/libX11.so.6.3.0)
==22565==by 0x6D56ACD: _XimEncodeICATTRIBUTE (in 
/usr/lib/x86_64-linux-gnu/libX11.so.6.3.0)
==22565==by 0x6D48C9D: _XimProtoCreateIC (in 
/usr/lib/x86_64-linux-gnu/libX11.so.6.3.0)
==22565==by 0x6D35B0B: XCreateIC (in 
/usr/lib/x86_64-linux-gnu/libX11.so.6.3.0)
==22565==by 0x5092A4C: create_aux_windows (SDL_x11video.c:533)
==22565==by 0x50939F1: X11_VideoInit (SDL_x11video.c:704)
==22565==by 0x5085285: SDL_VideoInit (SDL_video.c:246)
==22565==by 0x505CCEB: SDL_InitSubSystem (SDL.c:89)
==22565==by 0x505CD63: SDL_Init (SDL.c:162)
==22565==by 0x112514: init (main.cpp:223)
==22565==by 0x112514: main (main.cpp:89)
==22565== 
==22565== 96 bytes in 2 blocks are possibly lost in loss record 163 of 225
==22565==at 0x4C2BBAF: malloc (vg_replace_malloc.c:299)
==22565==by 0x7C4AE0C: new_fluid_track (fluid_midi.c:1039)
==22565==by 0x7C4B8A1: fluid_midi_file_read_track 

Bug#863032: unblock: ibus/1.5.14-3

[Osamu Aoki]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package ibus

Due to lack of build dependency to qtbase5-dev, keyboard input method
indicator icon wasn't properly displayed in KDE and reported recently as
Bug #862814.  It is highly desirable to fix this for KDE to make Debian
a viable distribution for Asian KDE users.

debdiff against the package in testing is attached.

unblock ibus/1.5.14-3

-- System Information:
Debian Release: 9.0
  APT prefers testing-proposed-updates
  APT policy: (500, 'testing-proposed-updates'), (500, 'testing'), (98, 
'experimental'), (98, 'unstable')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.10.0-rc6-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru ibus-1.5.14/debian/changelog ibus-1.5.14/debian/changelog
--- ibus-1.5.14/debian/changelog	2016-12-10 15:26:04.0 +0900
+++ ibus-1.5.14/debian/changelog	2017-05-20 20:36:04.0 +0900
@@ -1,3 +1,10 @@
+ibus (1.5.14-3) unstable; urgency=medium
+
+  * Set ENABLE_APPINDICATOR_ENGINE_ICON by installing qtbase5-dev.
+Closes: #862814
+
+ -- Osamu Aoki   Sat, 20 May 2017 20:36:04 +0900
+
 ibus (1.5.14-2) unstable; urgency=medium
 
   * Update d/control and d/watch file for URLs. 
diff -Nru ibus-1.5.14/debian/control ibus-1.5.14/debian/control
--- ibus-1.5.14/debian/control	2016-12-10 15:26:04.0 +0900
+++ ibus-1.5.14/debian/control	2017-05-20 15:18:43.0 +0900
@@ -32,6 +32,7 @@
python-gi-dev,
python3-all,
python3-dbus,
+   qtbase5-dev,
valac (>= 0.16)
 Standards-Version: 3.9.8
 Homepage: https://github.com/ibus/ibus/releases


signature.asc
Description: PGP signature

Bug#863031: RM: nikola/7.6.4-1

[martin f krafft]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: rm

The current version in stable is almost 2 years old. Bug#801796 has
been tracking the requests for new versions to be packaged. However,
the maintainer hasn't engaged. Upstream co-maintainer Chris Warrick
has made it clear in #801796 that they'd rather not have nikola in
Debian, than an ancient version that annoys people and causes them
spurious bug reports.

Given how nobody has put in any work on nikola in almost 2 years,
I think we should have the decency to remove the package from
stretch and sid before the release.

nikola has no reverse dependencies, so…

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_NZ, LC_CTYPE=en_NZ.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)


-- 
 .''`.   martin f. krafft  @martinkrafft
: :'  :  proud Debian developer
`. `'`   http://people.debian.org/~madduck
  `-  Debian - when you have better things to do than fixing systems


digital_signature_gpg.asc
Description: Digital GPG signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current)

Bug#863033: strip-nondeterminism: Only print log messages by default if a file has been modified

[Chris Lamb]

Package: strip-nondeterminism
Version: 0.033-2
Severity: normal

Hi,

Currently strip-nondeterminism emits log messages at the non-verbose
debhelper level even if we did not modify the file:

Normalizing debian/giftrans/usr/share/man/man1/giftrans.1.gz
Normalizing debian/giftrans/usr/share/doc/giftrans/changelog.Debian.gz

This is not only noisy in-of itself (!) and somewhat misleading, it also
defeats the point of adding these particular log messages in the first place;
we should only be printing if we modified the file so we can start to remove
normalizers from strip-nondeterminism.


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#863030: Do not encode soversion in source and dev package name

[Andreas Metzler]

In article 
<74d26891-c5e4-564f-bc96-88cbf3c94d06__38511.7756938145$1495284174$gmane$o...@debian.org>
 (gmane.comp.gnu.libidn.general) you wrote:
> Am 20.05.2017 um 14:17 schrieb Michael Biebl:

>> Please consider renaming the source package to
>> Source: libidn2 so it reflects the upstream name
>> and the dev package to
>> Package: libidn2-dev
[...]
> Thankfully, switching to an unversioned libidn2-dev package name at this
> point would be rather simple as only three packages currently build
> against libidn2:

> curl: libidn2-0-dev
> html-xml-utils: libidn2-0-dev
> wget: libidn2-0-dev

Plus gnutls28 in experimental. (Just completing the information, not
arguing against the change.)

cu Andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

Bug#862814: [Pkg-ime-devel] Bug#862814: ibus-ui (systray icon) mis-detects Qt/KDE version

[Osamu Aoki]

Hi,
...
> $ debdiff ibus_1.5.14-2.dsc ibus_1.5.14-3.dsc 
> dpkg-source: warning: extracting unsigned source package 
> (/home/osamu/vcs-debian/ibus/ibus_1.5.14-3.dsc)
> diff -Nru ibus-1.5.14/debian/changelog ibus-1.5.14/debian/changelog
> --- ibus-1.5.14/debian/changelog  2016-12-10 15:26:04.0 +0900
> +++ ibus-1.5.14/debian/changelog  2017-05-20 16:06:23.0 +0900

After some polish-up of the changelog comment and testing, I uploaded.

Typing from Konsole ;-)

Osamu

Bug#863016: poppler: CVE-2017-9083

[Jason Crain]

On Sat, May 20, 2017 at 10:30:17AM +0200, Salvatore Bonaccorso wrote:
> the following vulnerability was published for poppler.
> 
> CVE-2017-9083[0]:
> | poppler 0.54.0, as used in Evince and other products, has a NULL
> | pointer dereference in the JPXStream::readUByte function in
> | JPXStream.cc. For example, the perf_test utility will crash
> | (segmentation fault) when parsing an invalid PDF file.

Does this apply to Debian's poppler?  I think uses openjpeg instead of
the internal JPX decoder.

There's a discussion on the poppler mailing list about making it more
explicit that the internal decoders are unmaintained:
https://lists.freedesktop.org/archives/poppler/2017-May/012230.html

Bug#863030: Do not encode soversion in source and dev package name

[Michael Biebl]

Am 20.05.2017 um 14:17 schrieb Michael Biebl:

> Please consider renaming the source package to
> Source: libidn2 so it reflects the upstream name
> and the dev package to
> Package: libidn2-dev

Reasons for *not* including the soversion in the -dev package name:
- On a soname bump, you most likely have a  file conflict with the old
dev package, you they are not co-installable anyway and you need Conflicts.

While you currently have the soversion in then source package name, you
could potentially ship multiple versions in the archive, but you
actually don't want multiple versions to pile up.
It's more straightforward to rebuild all reverse dependencies and fix
the few which might FTBFS.

- There's less package churn. Having to update all reverse dependencies
to use libidn2-1-dev instead of libidn2-0-dev is cumbersome.


Thankfully, switching to an unversioned libidn2-dev package name at this
point would be rather simple as only three packages currently build
against libidn2:

curl: libidn2-0-dev
html-xml-utils: libidn2-0-dev
wget: libidn2-0-dev



-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#863029: unblock (pre-approval): game-data-packager/49.1

[Niels Thykier]

Control: tags -1 confirmed moreinfo

On Sat, 20 May 2017 13:10:03 +0100 Simon McVittie  wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: unblock
> 
> game-data-packager in experimental (v51) fixes a non-RC but annoying
> regression from jessie (#860998) which we would like to fix in stretch
> (currently at v49).
> 
> I've prepared a proposed v49.1 version for stretch, with a backport
> from v50 of that fix, together with some other unintrusive bug fixes
> from v50 and v51. Would this be OK to upload?
> 
> Thanks,
> S


Ack, please go ahead.

Thanks,
~Niels

Bug#863030: Do not encode soversion in source and dev package name

[Michael Biebl]

Source: libidn2-0
Version: 0.16-1
Severity: normal

Hi,

the upstream source tarball is named libidn2_$(version).
Afaics, you encoded the soversion "0" into that name, resulting in
Source: libidn2-0

This is quite unusual and not how (library) packages are handled in
Debian.

The same is true for the -dev package. This package should typically
*not* include the soversion.

Please consider renaming the source package to
Source: libidn2 so it reflects the upstream name
and the dev package to
Package: libidn2-dev

Regards,
Michael

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (200, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- no debconf information

Bug#862992: systemd: avoid attempt to re-create /etc/mtab by systemd-tmpfiles-setup.service

[Maximilian Stein]

> Well, it's not really re-created on every boot, just if /etc/mtab is
> *not* a relative symlink to ../proc/self/mounts.
>
True, I have now just changed my FAI scripts to create the symlink to
"../proc/self/mounts" and indeed, systemd-tmpfiles-setup.service now
starts without error.



signature.asc
Description: OpenPGP digital signature

Bug#863029: unblock (pre-approval): game-data-packager/49.1

[Simon McVittie]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

game-data-packager in experimental (v51) fixes a non-RC but annoying
regression from jessie (#860998) which we would like to fix in stretch
(currently at v49).

I've prepared a proposed v49.1 version for stretch, with a backport
from v50 of that fix, together with some other unintrusive bug fixes
from v50 and v51. Would this be OK to upload?

Thanks,
S
diffstat for game-data-packager-49 game-data-packager-49.1

 data/camelot.yaml   |2 
 data/copyright  |4 -
 data/doom3.yaml |   15 --
 data/freddypharkas.yaml |2 
 data/gobliiins.yaml |2 
 data/gobliins2.yaml |2 
 data/goblins3.yaml  |   15 --
 data/hexen2.yaml|   19 ++--
 data/iceman.yaml|2 
 data/icewind-dale-2.yaml|   11 
 data/ja.yaml|   11 
 data/jk2.yaml   |   11 
 data/larry1.yaml|   24 ++
 data/larry2.yaml|   10 
 data/larry3.yaml|   10 
 data/larry5.yaml|9 
 data/larry6.yaml|9 
 data/last-crusade.yaml  |2 
 data/laura-bow1.yaml|2 
 data/laura-bow2.yaml|2 
 data/longbow.yaml   |2 
 data/t7g.yaml   |2 
 data/tony.yaml  |2 
 data/xcom-ufo.yaml  |   98 ++--
 debian/.gitignore   |1 
 debian/changelog|   30 +
 debian/copyright|6 +-
 debian/copyright.in |6 +-
 game_data_packager/build.py |3 -
 game_data_packager/data.py  |2 
 30 files changed, 226 insertions(+), 90 deletions(-)

diff -Nru game-data-packager-49/data/camelot.yaml game-data-packager-49.1/data/camelot.yaml
--- game-data-packager-49/data/camelot.yaml	2017-03-14 11:12:53.0 +
+++ game-data-packager-49.1/data/camelot.yaml	2016-12-22 16:43:05.0 +
@@ -4,6 +4,8 @@
 copyright: © 1990 Sierra
 plugin: scummvm_common
 wiki: Conquests_of_Camelot
+gog:
+  url: conquests_of_camelot
 
 packages:
   conquests-of-camelot-data:
diff -Nru game-data-packager-49/data/copyright game-data-packager-49.1/data/copyright
--- game-data-packager-49/data/copyright	2017-03-14 11:12:53.0 +
+++ game-data-packager-49.1/data/copyright	2016-12-22 16:43:05.0 +
@@ -18,8 +18,8 @@
 © 2008-2013 Jonathan Dowland
 © 2011-2016 Stephen Kitt
 © 2012-2015 Markus Koschany
-© 2014-2016 Simon McVittie
-© 2015-2016 Alexandre Detiste
+© 2014-2017 Simon McVittie
+© 2015-2017 Alexandre Detiste
 
 This program is free software; you can redistribute it and/or modify
 it under the terms of the GNU General Public License as published by
diff -Nru game-data-packager-49/data/doom3.yaml game-data-packager-49.1/data/doom3.yaml
--- game-data-packager-49/data/doom3.yaml	2017-03-14 11:12:53.0 +
+++ game-data-packager-49.1/data/doom3.yaml	2016-12-22 16:43:05.0 +
@@ -66,6 +66,8 @@
   path: "common/DOOM 3 BFG Edition"
 install:
   - BFG data
+optional:
+  - BFG CRCs
 
 groups:
   base data: |
@@ -87,20 +89,23 @@
   d3xp patch: |
 99336 06fc9be965e345587064056bf22236d2  d3xp/pak001.pk4
 
-  BFG data: |
+  # Not all versions have these. They don't seem to be mandatory
+  BFG CRCs: |
 906400f89dc77d79f015d834019114f5fe74 base/_common.crc
-803833516eea23da08930c4f91415ee005d417ff base/_common.resources
 5360c6017691bc059f4c460a5df0f6ab5a5a base/_ordered.crc
-11311441cedb159596cacb5a8f22bda251475b6a base/_ordered.resources
 19052   0645725e0c5d03cadffc4695e663c233 base/_sound_pc.crc
-545924092   98ce8ddb7aa83b7f2b39ff9cc6a5064e base/_sound_pc.resources
 337627bf2ef54ff3743f8c52e296ad97c037 base/_sound_pc_en.crc
-133979908   d30d68a061b8771e9730c2a0dd07edbb base/_sound_pc_en.resources
 3316c13acbb298d4deadfcd06db10cba0d43 base/_sound_pc_fr.crc
 33364277451b4cfbcb7b060dedbdaf93b0fd base/_sound_pc_gr.crc
 3336e8e977b1b58069354da2b05e7e9a54a2 base/_sound_pc_it.crc
 33406df877b53293348cb360fe7215d0b18c base/_sound_pc_jp.crc
 33164b82286cec8f8ce00f20f35566dc5049 base/_sound_pc_sp.crc
+
+  BFG data: |
+803833516eea23da08930c4f91415ee005d417ff base/_common.resources
+11311441cedb159596cacb5a8f22bda251475b6a base/_ordered.resources
+545924092   98ce8ddb7aa83b7f2b39ff9cc6a5064e base/_sound_pc.resources
+133979908   d30d68a061b8771e9730c2a0dd07edbb base/_sound_pc_en.resources
 2973d6dab5e941e5090e99951e521336daeb base/classicmusic/gravis.cfg
 10829   08a0918d039ca1cfb418feaca1fe8983 base/classicmusic/instruments/ACBASS.PAT
 19623   ee71868661463ac9f8bb6b2eede1dbef base/classicmusic/instruments/ACCORDN.PAT
diff -Nru 

Bug#826452: Pending fixes for bugs in the libwx-perl package

[pkg-perl-maintainers]

tag 826452 + pending
thanks

Some bugs in the libwx-perl package are closed in revision
c0efd366eca241a3d4bdd27c326a5a7b63371a2a in branch 'master' by gregor
herrmann

The full diff can be seen at
https://anonscm.debian.org/cgit/pkg-perl/packages/libwx-perl.git/commit/?id=c0efd36

Commit message:

Add patch encoding-pragma.patch

to disable "use encoding" which is a fatal error since Perl 5.25.x.

Closes: #826452

Bug#841421: python-opcua: FTBFS randomly

[Santiago Vila]

retitle 841421 python-opcua: FTBFS randomly
severity 841421 important
thanks

On Fri, May 19, 2017 at 11:57:31AM +0200, W. Martin Borgert wrote:

> could you test the new version 0.90.3-1 in unstable, please?
> No hurry, because of the freeze the package will not migrate
> to testing soon anyway.

I've put a bunch of failed build logs here:

https://people.debian.org/~sanvila/build-logs/python-opcua/

You will also find several failed build logs here:

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/python-opcua.html


Note: I got six failures in a row after trying six times, back in
October, and that's why I reported it as serious, but now the failures
seem to be random, like many other packages I found:

https://bugs.debian.org/cgi-bin/pkgreport.cgi?users=sanv...@debian.org;tag=ftbfs-randomly

I'm not using serious severity for those (unless they fail a lot,
say, more than 20% of the time) because I am still waiting for release
manager to say something about it (see Bug #844264 for details).

The bad thing is that this package has already been removed from
stretch. I'm sorry for that. It is not easy to assign a "fair"
severity for a bug when it happens randomly.

Thanks.

Bug#862244: Re: Fwd: bug 850430 still here in postfix version 3.1.4-4 ?

[James Cowgill]

On 20/05/17 12:24, James Cowgill wrote:
> I am also getting this exact same error in a new postfix server I
> setup. Changing the command from lmtp to smtp fixes it for me as well.

This of course should be "from smtp to lmtp".

James



signature.asc
Description: OpenPGP digital signature

Bug#862814: ibus-ui (systray icon) mis-detects Qt/KDE version

[Osamu Aoki]

Hi,

On Sat, May 20, 2017 at 10:14:38AM +0900, Osamu Aoki wrote:
> Hi,
> 
> On Fri, May 19, 2017 at 10:06:20AM +0200, Ralf Jung wrote:
> > > On Wed, May 17, 2017 at 02:03:22PM +0200, Ralf Jung wrote:
> > >> (i.e., removing the preprocessor conditional entirely) fixes the
> > >> problem:  The icon is properly shown in the systray.
> ...
> > +++ ibus-1.5.14/ui/gtk3/panel.vala
> > @@ -1372,15 +1372,7 @@ class Panel : IBus.PanelService {
> >  m_status_icon.set_from_file(icon_name);
> >  }
> >  else if (m_icon_type == IconType.INDICATOR) {
> > -#if INDICATOR_ENGINE_ICON
> >  m_indicator.set_icon_full(icon_name, "");
> > -#else
> > -warning("plasma-workspace 5.2 or later is required to " +
> > -"show the absolute path icon %s. Currently check " 
> > +
> > -"qtbase 5.4 since there is no way to check " +
> > -"the version of plasma-workspace.", icon_name);
> > -m_indicator.set_icon_full("ibus-engine", "");
> > -#endif
> 
> 
> I see.  Then, this can be solved by defining INDICATOR_ENGINE_ICON.
> 
> Let's see what we have in Debian testing:
> 
> plasma-workspace
> 
> testing 4:5.8.6-2
> unstable 4:5.8.6-2
> Ubuntu 4:5.9.5.1-0ubuntu1
> 
> qtbase-opensource-src
> 
> ld-bpo:  5.3.2+dfsg-4+deb8u1~bpo70+1
> stable:  5.3.2+dfsg-4+deb8u2
> testing:  5.7.1+dfsg-3
> unstable:  5.7.1+dfsg-3
> exp: 5.9.0~beta.3+dfsg-1
> 
> OK, we have 
>  plasma-workspace  5.8   >> 5.2
>  qtbase-opensource-src 5.7.1 >> 5.4 
> 
> So we need to define INDICATOR_ENGINE_ICON.

As I looked in the configure.ac:

| # --enable-appindicator option.
| AC_ARG_ENABLE(appindicator,
| AS_HELP_STRING([--enable-appindicator],
|[Build appindicator support]),
| [enable_appindicator=$enableval],
| [enable_appindicator=yes]
| )
| AM_CONDITIONAL([ENABLE_APPINDICATOR], [test x"$enable_appindicator" = x"yes"])
| ...
| enable_appindicator_engine_icon="no"
| if test x"$enable_appindicator" = x"yes"; then
| enable_appindicator="yes (enabled, use --disable-appindicator to disable)"
| 
| # Need qt5-qtbase-devel package
| # There is no way to check the version of KStatusNotifierItem and
| # check the version of qtbase here.
| AC_MSG_CHECKING([for KDE5 appindicator engine icon])
| PKG_CHECK_EXISTS([Qt5Gui >= 5.4],
| enable_appindicator_engine_icon="yes"
| )
| AC_MSG_RESULT([$enable_appindicator_engine_icon])
| 
| fi
| if test x"$enable_appindicator_engine_icon" != x"yes" ; then
| enable_appindicator_engine_icon="no (disabled, need qtbase-devel 5.4 or 
later)"
| fi
| AM_CONDITIONAL([ENABLE_APPINDICATOR_ENGINE_ICON],
|[test x"$enable_appindicator_engine_icon" = x"yes"])
| 

Since CONFIGURE_FLAGS already has --enable-appindicator, I just need to
install qtbase5-dev.
 
$ debdiff ibus_1.5.14-2.dsc ibus_1.5.14-3.dsc 
dpkg-source: warning: extracting unsigned source package 
(/home/osamu/vcs-debian/ibus/ibus_1.5.14-3.dsc)
diff -Nru ibus-1.5.14/debian/changelog ibus-1.5.14/debian/changelog
--- ibus-1.5.14/debian/changelog2016-12-10 15:26:04.0 +0900
+++ ibus-1.5.14/debian/changelog2017-05-20 16:06:23.0 +0900
@@ -1,3 +1,10 @@
+ibus (1.5.14-3) unstable; urgency=medium
+
+  * Enable appindicator engine icon by the configure auto detection.
+Closes: #862814
+
+ -- Osamu Aoki   Sat, 20 May 2017 16:06:23 +0900
+
 ibus (1.5.14-2) unstable; urgency=medium
 
   * Update d/control and d/watch file for URLs. 
diff -Nru ibus-1.5.14/debian/control ibus-1.5.14/debian/control
--- ibus-1.5.14/debian/control  2016-12-10 15:26:04.0 +0900
+++ ibus-1.5.14/debian/control  2017-05-20 15:18:43.0 +0900
@@ -32,6 +32,7 @@
python-gi-dev,
python3-all,
python3-dbus,
+   qtbase5-dev,
valac (>= 0.16)
 Standards-Version: 3.9.8
 Homepage: https://github.com/ibus/ibus/releases