Bug#688298: jenkins: Multiple security issues
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Note that the jenkins package in Debian is not effected by: CVE-2012-4440 jenkins XSS in Violations plugin CVE-2012-4441 jenkins XSS in CI game plugin These are problems in plugins which are not built as part of the jenkins source package. I have a fix from upstream for 1.447.2 - testing now. - -- James Page Ubuntu Core Developer Debian Maintainer james.p...@ubuntu.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iQIcBAEBCAAGBQJQYYMIAAoJEL/srsug59jDrBAQAMQC1TNbPRYxBb9kvzdMIZ1y R/l2AEbXO8iQPnU5/8Dk/QviMtYZ0RcVea5bY7pn4YD1zXueGpQk4YGorN2zaAfK OayVFsGySH1w9MioXxdtZnYeySA/Df2yV6cjeuLjxoSYmyDUotSDtaW9IFURMgwb Xv5nKZeyH0W2jcy4GLl5ZGwhpVMBTkLFUGmp9lQtYTx3Q3lFOSUt1G47h7WoplAp xXN1cHhKj6wU/IBu0fDwJ4bsb2e6X0GxW4Uhy64sZBUP4AB18+kk3e2iPeOVeCTJ ySpqqj+7N+hzu8DiYVMSFXcdsYFOUPVTCESn2FDG2XSy0Jpmrj88jlDb0U2jqM1Y yaz2v8TXzVGQjnuIwUx+l9XVzBQXl0VsuCVgqt/MGM1ijlt19aUE/1AZ6DpL/KWA cjqetPkSjbYOCnOFKmr6TzvFdpkBnunkYgYQt2XWtK59s1l60eiWSHvfV0vDknNi TvcSQl/OVDbaZQEEsJiFh5HRVTYkKEH339+76RZzwQI8l2FZpV4APnhl//fvGvBJ mKj1pWPqIoF7GM/sfkNrvSK5Kh3m8AJdNNSJPWNzgxtRcGgZ57uw6hvNhTGY/Aaw IAIEWCqEN+3kyanxqKH8KnKSLCGsPSf9eDUxSY0XIqgslwXv/rvRDgOXb/zKf90G W3txjiK0N8p51IRMY7hs =pxHM -END PGP SIGNATURE- __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Incomplete upload found in Debian upload queue
Probably you are the uploader of the following file(s) in the Debian upload queue directory: jenkins_1.447.2+dfsg-2.debian.tar.gz jenkins_1.447.2+dfsg-2.dsc This looks like an upload, but a .changes file is missing, so the job cannot be processed. If no .changes file arrives within 23:20:27, the files will be deleted. If you didn't upload those files, please just ignore this message. Greetings, Your Debian queue daemon (running on host franck.debian.org) __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Processing of jenkins_1.447.2+dfsg-2_i386.changes
jenkins_1.447.2+dfsg-2_i386.changes uploaded successfully to localhost along with the files: jenkins_1.447.2+dfsg-2.dsc jenkins_1.447.2+dfsg-2.debian.tar.gz libjenkins-java_1.447.2+dfsg-2_all.deb libjenkins-plugin-parent-java_1.447.2+dfsg-2_all.deb jenkins-common_1.447.2+dfsg-2_all.deb jenkins_1.447.2+dfsg-2_all.deb jenkins-slave_1.447.2+dfsg-2_all.deb jenkins-external-job-monitor_1.447.2+dfsg-2_all.deb jenkins-cli_1.447.2+dfsg-2_all.deb jenkins-tomcat_1.447.2+dfsg-2_all.deb Greetings, Your Debian queue daemon (running on host franck.debian.org) __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Re: Incomplete upload found in Debian upload queue
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 25/09/12 12:13, Debian FTP Masters wrote: Probably you are the uploader of the following file(s) in the Debian upload queue directory: jenkins_1.447.2+dfsg-2.debian.tar.gz jenkins_1.447.2+dfsg-2.dsc This looks like an upload, but a .changes file is missing, so the job cannot be processed. If no .changes file arrives within 23:20:27, the files will be deleted. [...] that was me network connection dropped whilst doing a large upload... - -- James Page Ubuntu Core Developer Debian Maintainer james.p...@ubuntu.com -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iQIcBAEBCAAGBQJQYaNfAAoJEL/srsug59jDxNMQAIMaOG6gtzmMzqvNEwMwsMSA k2mN9L351RKAg7QA04G4N6IsS+xHIdAyEEAvDEPnI8zmfaIgORS7ce4IB8PzIiMe Hp0RsgUA5f1tPcnq1zM8SqZhGJCyiT4PJn2Y+HIjyHvu9LX/6MrCRbbyAIDJHX/m VFEZkvmv+ZYH/siQk+Y2A46/vNgrXgQoQr4Q4O62mzcYz8n61MzKtlcVexpUGuTu Dcg/iPwxjKSWq4BAatdB1cMB+Y3N69yWR77oetlcarozoKawwBZMVLqBrlLzw1W5 CpP5hH3sBbBeL5U3a0RDndqwgSHCx5t7oA9oPU8sf7JRV1Uonoifd+7l80FW5maj ebVMOr0ZlC1VmkbYqqHyidT9mbSYWK/JxqYCnu9EasgeIoQA9GNRwuNpOoZlcIW0 CRa8SZ9TLZvVARYvBcamvcpyO4ox5pMY1Zd41LIwgvpDRxVgIHzlTNxTbTk1x8lX W4XFx2rVPvLjXcPIS5r0+EExgLUP2pMBGRKsOd9LDLVkEOgFXaMTaGehX2nyk8bF qaxDoP30Cw2y45G9lIo7kPAAtkHhsZUcnwSHTmNeRvgye8voxZz1p4YYVjtMzrIs Et6LpSKOnodOjbpOZb2QcIIn5G+c9H0El0dy2Yc/jFGNJXzOOSpvTP76ezR1Z5We 8mIKayufDbx3NW0Vhw5G =YV8L -END PGP SIGNATURE- __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
jenkins_1.447.2+dfsg-2_i386.changes ACCEPTED into unstable
Mapping sid to unstable. DM flag not set, but accepted as DMUA was set. Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Sep 2012 11:01:53 +0100 Source: jenkins Binary: libjenkins-java libjenkins-plugin-parent-java jenkins-common jenkins jenkins-slave jenkins-external-job-monitor jenkins-cli jenkins-tomcat Architecture: source all Version: 1.447.2+dfsg-2 Distribution: sid Urgency: low Maintainer: Debian Java Maintainers pkg-java-maintainers@lists.alioth.debian.org Changed-By: James Page james.p...@ubuntu.com Description: jenkins- Continuous Integration and Job Scheduling Server jenkins-cli - Jenkins CI Command Line Interface jenkins-common - Jenkins common Java components and web application jenkins-external-job-monitor - Jenkins CI external job monitoring jenkins-slave - Jenkins slave node helper jenkins-tomcat - Jenkins CI on Tomcat 6 libjenkins-java - Jenkins CI core Java libraries libjenkins-plugin-parent-java - Jenkins Plugin Parent Maven POM Closes: 688298 Changes: jenkins (1.447.2+dfsg-2) unstable; urgency=low . * Fix multiple security issues in Jenkins core (Closes: #688298): - d/p/security/CVE-2012-4438_CVE-2012-4439.patch: Cherry picked fixes from 1.466.2 release to resolve remote code execution and XSS security vulnerabilities. - d/rules: Tweaked handling of groovy - java source file copy to accommodate the file created by the above patch. - Fixes: CVE-2012-4438, CVE-2012-4439 Checksums-Sha1: 97f573b825b7f41a961fe2fab77a062e43b3fe26 4467 jenkins_1.447.2+dfsg-2.dsc 5aab1156237d80a16af8e0b6976cd79f97663f1a 53103 jenkins_1.447.2+dfsg-2.debian.tar.gz cd0653aa6f388d03f9f3107d710affd9c666a33b 6658972 libjenkins-java_1.447.2+dfsg-2_all.deb 711eca0bfb4b30c7b690ad83dd347c134f81bc5b 14716 libjenkins-plugin-parent-java_1.447.2+dfsg-2_all.deb 355f0db20106aca5a923049601d6a8a1028cd4d6 33056414 jenkins-common_1.447.2+dfsg-2_all.deb 4ba9e8354b08ae29d25b4e5700867d6c74883422 18830 jenkins_1.447.2+dfsg-2_all.deb 22b88205f445e6810bd621f70bc30d70dd51e469 17888 jenkins-slave_1.447.2+dfsg-2_all.deb a790005aea9a6def4f156738be21431e382efdcf 6626410 jenkins-external-job-monitor_1.447.2+dfsg-2_all.deb 3325fb480ec6e00fe94ba8d2a6011f9af9a91fdc 667052 jenkins-cli_1.447.2+dfsg-2_all.deb d32230ecd82c9ba33d5baf7f23e22b8ac44837e4 14990 jenkins-tomcat_1.447.2+dfsg-2_all.deb Checksums-Sha256: 1f36b76fb653145adc564fe04efd747bcb71cf504f4b8bcd28e62e0a34949900 4467 jenkins_1.447.2+dfsg-2.dsc bfb017a8f8a2e17294b19655c4480299f3249bf069a1dee43f724b4a923bc1d0 53103 jenkins_1.447.2+dfsg-2.debian.tar.gz 24b9cea46afd42dfca4ffa9c02648ae9fb83abe6d1b8d246543addcdb5eaf235 6658972 libjenkins-java_1.447.2+dfsg-2_all.deb 6becbb5fadbdfd3156295503a36cce06445c45c29db387f874e98454c827511b 14716 libjenkins-plugin-parent-java_1.447.2+dfsg-2_all.deb 80d3607ce156363ec625db90c78684eb16c3f76c6c3e20ab08b8070c30c9a351 33056414 jenkins-common_1.447.2+dfsg-2_all.deb 48efc0e032c9f67bd2541a0ccf0d0d64f6bb8ddd6d44b8d8f2e38417241c892a 18830 jenkins_1.447.2+dfsg-2_all.deb 8932ed5aa9395b8e89115241091fb900c4458f36a0adcfc3446be0ba0ab2db2d 17888 jenkins-slave_1.447.2+dfsg-2_all.deb 63e811e09ddaf8071a035be14c69c627a7878494e23cc70918dede257e816341 6626410 jenkins-external-job-monitor_1.447.2+dfsg-2_all.deb 8ade5b6b17ddfff7cbedab28152ef9f496d4deba60fe4231962b4473ac7a323f 667052 jenkins-cli_1.447.2+dfsg-2_all.deb bce403204c8f6bfb3d5ce97355236e662d792456e95fd219c36340baad5b38e0 14990 jenkins-tomcat_1.447.2+dfsg-2_all.deb Files: 7cfabd08194a95bee8b20ce12fba35a8 4467 java optional jenkins_1.447.2+dfsg-2.dsc 639701dca2a6dbca70c5e81ba549326b 53103 java optional jenkins_1.447.2+dfsg-2.debian.tar.gz 5f7243be61277888f41a0a5d17e4e3d6 6658972 java optional libjenkins-java_1.447.2+dfsg-2_all.deb f6679231d08b0e3198cb5a80c96f2a96 14716 java optional libjenkins-plugin-parent-java_1.447.2+dfsg-2_all.deb 83e630f0f40f068cec847cc9b168e751 33056414 java optional jenkins-common_1.447.2+dfsg-2_all.deb 367eb613aeb1fbea109c5134d3960149 18830 java optional jenkins_1.447.2+dfsg-2_all.deb e235ee7d4b3af7eecce5ea21bb824242 17888 java optional jenkins-slave_1.447.2+dfsg-2_all.deb 8a836ac6f7ad7ccf75b8a42f72c49fcc 6626410 java optional jenkins-external-job-monitor_1.447.2+dfsg-2_all.deb 1904cd2a7b9c8e0c913c008d9a1b1bd1 667052 java optional jenkins-cli_1.447.2+dfsg-2_all.deb 9af89ec478f96cab16fc15e1de2b8e4b 14990 java optional jenkins-tomcat_1.447.2+dfsg-2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAEBCAAGBQJQYZUwAAoJEL/srsug59jD4ZMQALrVS1/440+24DC9SqeY6cqw wt9ZdL8FAa5yEvX/dCWe6OJCy4UnSeT2utFGVyWnnBqSd3t3/Vc3K/8HEeDP6sRH wVltXUeFbEjqJTadB9FzZmQXmT1pvC6y81VQPepHRYvsfmfOddgnjTKD0FTMxZOM YVEq4EqnR6GcxWH5l1qJOgCZCTQp9VV5p1mpTTf0Zg9+LqcnZw17u7DcDKE+XVPC BiAFsLQfaCvq9TsTED3N6Li9T4vJhlBj36dAScD5TVsm8cagrREVjM9owucfxg1U +EDlMlQURI+Nn/64DVmX1nJZxcjpMGQ+OEemIdGMGHpfDRDeDEX8mRJRvwpKHcmB
Bug#636554: jruby: New upstream release
On Wed, Aug 3, 2011 at 2:09 PM, James Healy ji...@deefa.com wrote: JRuby 1.6.3 is available upstream and includes official support for ruby 1.9 syntax. Are there any plans to package 1.6.x? yes, but every helping hand is welcome! Is there a place where this plans are documented? What are they? I might be interested to help. I've already started a bit, but don't know java that much and hit some symbols not found errors at compilation time. bert. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#688298: marked as done (jenkins: Multiple security issues)
Your message dated Tue, 25 Sep 2012 12:32:43 + with message-id e1tgujf-0003vv...@franck.debian.org and subject line Bug#688298: fixed in jenkins 1.447.2+dfsg-2 has caused the Debian Bug report #688298, regarding jenkins: Multiple security issues to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 688298: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688298 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: jenkins Severity: grave Tags: security Justification: user security hole Please see http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2012-09-17.cb CVE IDs have been assigned: http://seclists.org/oss-sec/2012/q3/521 Remember Debian is frozen, so please upload only minimal fixes and and ask for a freeze exception by filing a bug against release.debian.org Cheers, Moritz ---End Message--- ---BeginMessage--- Source: jenkins Source-Version: 1.447.2+dfsg-2 We believe that the bug you reported is fixed in the latest version of jenkins, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 688...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. James Page james.p...@ubuntu.com (supplier of updated jenkins package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 25 Sep 2012 11:01:53 +0100 Source: jenkins Binary: libjenkins-java libjenkins-plugin-parent-java jenkins-common jenkins jenkins-slave jenkins-external-job-monitor jenkins-cli jenkins-tomcat Architecture: source all Version: 1.447.2+dfsg-2 Distribution: sid Urgency: low Maintainer: Debian Java Maintainers pkg-java-maintainers@lists.alioth.debian.org Changed-By: James Page james.p...@ubuntu.com Description: jenkins- Continuous Integration and Job Scheduling Server jenkins-cli - Jenkins CI Command Line Interface jenkins-common - Jenkins common Java components and web application jenkins-external-job-monitor - Jenkins CI external job monitoring jenkins-slave - Jenkins slave node helper jenkins-tomcat - Jenkins CI on Tomcat 6 libjenkins-java - Jenkins CI core Java libraries libjenkins-plugin-parent-java - Jenkins Plugin Parent Maven POM Closes: 688298 Changes: jenkins (1.447.2+dfsg-2) unstable; urgency=low . * Fix multiple security issues in Jenkins core (Closes: #688298): - d/p/security/CVE-2012-4438_CVE-2012-4439.patch: Cherry picked fixes from 1.466.2 release to resolve remote code execution and XSS security vulnerabilities. - d/rules: Tweaked handling of groovy - java source file copy to accommodate the file created by the above patch. - Fixes: CVE-2012-4438, CVE-2012-4439 Checksums-Sha1: 97f573b825b7f41a961fe2fab77a062e43b3fe26 4467 jenkins_1.447.2+dfsg-2.dsc 5aab1156237d80a16af8e0b6976cd79f97663f1a 53103 jenkins_1.447.2+dfsg-2.debian.tar.gz cd0653aa6f388d03f9f3107d710affd9c666a33b 6658972 libjenkins-java_1.447.2+dfsg-2_all.deb 711eca0bfb4b30c7b690ad83dd347c134f81bc5b 14716 libjenkins-plugin-parent-java_1.447.2+dfsg-2_all.deb 355f0db20106aca5a923049601d6a8a1028cd4d6 33056414 jenkins-common_1.447.2+dfsg-2_all.deb 4ba9e8354b08ae29d25b4e5700867d6c74883422 18830 jenkins_1.447.2+dfsg-2_all.deb 22b88205f445e6810bd621f70bc30d70dd51e469 17888 jenkins-slave_1.447.2+dfsg-2_all.deb a790005aea9a6def4f156738be21431e382efdcf 6626410 jenkins-external-job-monitor_1.447.2+dfsg-2_all.deb 3325fb480ec6e00fe94ba8d2a6011f9af9a91fdc 667052 jenkins-cli_1.447.2+dfsg-2_all.deb d32230ecd82c9ba33d5baf7f23e22b8ac44837e4 14990 jenkins-tomcat_1.447.2+dfsg-2_all.deb Checksums-Sha256: 1f36b76fb653145adc564fe04efd747bcb71cf504f4b8bcd28e62e0a34949900 4467 jenkins_1.447.2+dfsg-2.dsc bfb017a8f8a2e17294b19655c4480299f3249bf069a1dee43f724b4a923bc1d0 53103 jenkins_1.447.2+dfsg-2.debian.tar.gz 24b9cea46afd42dfca4ffa9c02648ae9fb83abe6d1b8d246543addcdb5eaf235 6658972 libjenkins-java_1.447.2+dfsg-2_all.deb 6becbb5fadbdfd3156295503a36cce06445c45c29db387f874e98454c827511b 14716 libjenkins-plugin-parent-java_1.447.2+dfsg-2_all.deb 80d3607ce156363ec625db90c78684eb16c3f76c6c3e20ab08b8070c30c9a351 33056414 jenkins-common_1.447.2+dfsg-2_all.deb
Bug#636554: jruby: New upstream release
On 25/09/12 13:31, berta...@ptitcanardnoir.org wrote: On Wed, Aug 3, 2011 at 2:09 PM, James Healyji...@deefa.com wrote: JRuby 1.6.3 is available upstream and includes official support for ruby 1.9 syntax. Are there any plans to package 1.6.x? yes, but every helping hand is welcome! Is there a place where this plans are documented? What are they? I might be interested to help. I've already started a bit, but don't know java that much and hit some symbols not found errors at compilation time. The work was done to repackage jruby-1.6.7.2 in June: http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/2012-June/039090.html It had no response. I presume that's because it re-ships the jars it requires rather than depending on existing Debian packages where they're available. If I were to suggest a starting point, it would be to get its dependencies up to date. -- Alex __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#635964: New version still not available
I've just checked and the new version of of pdfsam is still not available though it contains significant enhancements. Version 1.1.4 has been released in 2009, version 2.2.1 in 2010 and the package has still not been updated. Regards, Tom __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Processing of libjlatexmath-java_1.0.0-1~exp1_amd64.changes
libjlatexmath-java_1.0.0-1~exp1_amd64.changes uploaded successfully to localhost along with the files: libjlatexmath-java_1.0.0-1~exp1.dsc libjlatexmath-java_1.0.0.orig.tar.gz libjlatexmath-java_1.0.0-1~exp1.debian.tar.gz libjlatexmath-java_1.0.0-1~exp1_all.deb libjlatexmath-java-doc_1.0.0-1~exp1_all.deb libjlatexmath-fop-java_1.0.0-1~exp1_all.deb Greetings, Your Debian queue daemon (running on host franck.debian.org) __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
libjlatexmath-java_1.0.0-1~exp1_amd64.changes ACCEPTED into experimental
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Mon, 24 Sep 2012 16:50:24 +0200 Source: libjlatexmath-java Binary: libjlatexmath-java libjlatexmath-java-doc libjlatexmath-fop-java Architecture: source all Version: 1.0.0-1~exp1 Distribution: experimental Urgency: low Maintainer: Debian Java Maintainers pkg-java-maintainers@lists.alioth.debian.org Changed-By: Sylvestre Ledru sylves...@debian.org Description: libjlatexmath-fop-java - Implementation of LaTeX math mode wrote in Java (fop plugin) libjlatexmath-java - Implementation of LaTeX math mode wrote in Java libjlatexmath-java-doc - Implementation of LaTeX math mode wrote in Java Changes: libjlatexmath-java (1.0.0-1~exp1) experimental; urgency=low . * New upstream release * Standards-Version updated to 3.9.3 Checksums-Sha1: a37ad06e70a1673e49db34c2a10e4ee80c9896eb 1566 libjlatexmath-java_1.0.0-1~exp1.dsc 2760e92a2050556879aace55e1fbe6c12530e766 962786 libjlatexmath-java_1.0.0.orig.tar.gz 5daf3a379c3a1c3afc04ec2240e0c8e70f0dc22d 4461 libjlatexmath-java_1.0.0-1~exp1.debian.tar.gz 303faf7f1a18e261fd7554f9e1e4badd061b5c15 963674 libjlatexmath-java_1.0.0-1~exp1_all.deb 9275b4f52828f6994810dcf1984ab1b154a897d5 280840 libjlatexmath-java-doc_1.0.0-1~exp1_all.deb ebca67d5c7ea750e9f03168b067a88bad4ab7c86 17948 libjlatexmath-fop-java_1.0.0-1~exp1_all.deb Checksums-Sha256: 5444d4d16c0cabaeaa6d11b89c5b8f64ceeacdced75635244f9b5d92c5f5e558 1566 libjlatexmath-java_1.0.0-1~exp1.dsc 44830d906cc06a935b925933e0c6d4a00a4e7366a30a91d046b828d6e7232c80 962786 libjlatexmath-java_1.0.0.orig.tar.gz d706e2e1fcddb17474a6b42d9295a3ef9c524681d5251f3e9a3aeb3165be5f06 4461 libjlatexmath-java_1.0.0-1~exp1.debian.tar.gz d73d38b19c967a42984402eb78d5d152c5516f9ae4d93934691c162280ab36f2 963674 libjlatexmath-java_1.0.0-1~exp1_all.deb 41f78d3446e958ad402700ed46d54e619dd8f5d964bfcd22f7135df4838037b1 280840 libjlatexmath-java-doc_1.0.0-1~exp1_all.deb 6637f3acee06b855eec9c84ad90d9ffb680299fe1d4fc0df404bdf78e5ac4b9c 17948 libjlatexmath-fop-java_1.0.0-1~exp1_all.deb Files: fc9c4926dce774df7625310acab59dbb 1566 java optional libjlatexmath-java_1.0.0-1~exp1.dsc f38143c82845625ebe2a6c86ebbb8184 962786 java optional libjlatexmath-java_1.0.0.orig.tar.gz 285aaf441db78ce304e12b45630b2294 4461 java optional libjlatexmath-java_1.0.0-1~exp1.debian.tar.gz caa1041b47b01e8f9b54c9cf614c2adc 963674 java optional libjlatexmath-java_1.0.0-1~exp1_all.deb 2747f4b56ed6cb954e992f2d86c425fc 280840 doc optional libjlatexmath-java-doc_1.0.0-1~exp1_all.deb bba77a305c02d50e36e3c99b830f96c1 17948 java optional libjlatexmath-fop-java_1.0.0-1~exp1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlBh3EkACgkQiOXXM92JlhDOpwCgmxy/bsjI2Ip0tYw/YKoWIvbO Jx0AoK0AzfZOkjoFREj56gRAZZy+3qMR =X250 -END PGP SIGNATURE- Thank you for your contribution to Debian. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#636554: jruby: New upstream release
On Tue, Sep 25, 2012 at 02:25:04PM +0100, Alex Young wrote: On 25/09/12 13:31, berta...@ptitcanardnoir.org wrote: On Wed, Aug 3, 2011 at 2:09 PM, James Healyji...@deefa.com wrote: JRuby 1.6.3 is available upstream and includes official support for ruby 1.9 syntax. Are there any plans to package 1.6.x? yes, but every helping hand is welcome! Is there a place where this plans are documented? What are they? I might be interested to help. I've already started a bit, but don't know java that much and hit some symbols not found errors at compilation time. The work was done to repackage jruby-1.6.7.2 in June: http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/2012-June/039090.html Yeah, I saw this message. Well done. It had no response. I presume that's because it re-ships the jars it requires rather than depending on existing Debian packages where they're available. If I were to suggest a starting point, it would be to get its dependencies up to date. I agree, shipping the jars from the upstream source is quite a violation of Debian's policy, so this upload won't be accepted I think. I've already begun to repackage some of its dependencies. I actually did upgrade (privately, as a matter to test the 1.6.8 packaging) : * libjaffl-java * libjcodings-java * libjffi-java libjffi-jni * libbytelist-java However, even with this upgraded package I have hard time being able to package jruby 1.6. I'm not very used to java I admit. I still get like 7 errors of unresolved symbols with this upgraded deps. All of them happen in org.jruby.ext.posix.{POSIX,LibC}, and I have hard time understanding why given my lame java knowledge... I upgraded this packages considering the dependencies that fedora enforced for its jruby 1.6 package, which can be found at : http://pkgs.fedoraproject.org/cgit/jruby.git/commit/?id=f4ea4c6e3ec7f89ffdce927b695fac638f2483ec I'll give another try latter. bert. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.
Bug#635964: pdfsam Re: Bug#635964: New version still not available
Hi Tom, 1.1.4 is in the archive, so at least the pre-2.0 series of pdfsam seems covered. I recall to have looked at the never version a while back. It has a series of additional build dependencies. No idea how far the packaging of those has progressed in the meantime. It was not trivial, so much I recall. I am afraid that my hunch is that there are some extra hands needed. Could you possibly help out? Would you have some peers with whom to save the work, possibly? Many greetings Steffen Original-Nachricht Datum: Tue, 25 Sep 2012 17:18:35 +0200 Von: third-imp...@gmx.de An: 635...@bugs.debian.org Betreff: Bug#635964: New version still not available I've just checked and the new version of of pdfsam is still not available though it contains significant enhancements. Version 1.1.4 has been released in 2009, version 2.2.1 in 2010 and the package has still not been updated. Regards, Tom __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions. __ This is the maintainer address of Debian's Java team http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers. Please use debian-j...@lists.debian.org for discussions and questions.